Vulnerability in Cisco Content_services_switch_11500

CVE-2015-0667

The Management Interface on Cisco Content Services Switch (CSS) 11500 devices 8.20.4.02 and earlier allows remote attackers to bypass intended restrictions on local-network device access via crafted SSH packets, aka Bug ID CSCut14855.

EPSS: 0.004 (58.9th percentile) — read the EPSS interpretation.

Affected products

Cisco Content_services_switch_11500
Cisco Content_services_switch_11500_firmware
N/a — versions n/a

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

1031939 (vdb-entry, x_refsource_SECTRACK)
20150318 Cisco Content Services Switch (11500) Unauthenticated Port Forwarding Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)