Vulnerability Description
IOS 12.2(52)SE and 12.2(52)SE1 on Cisco Industrial Ethernet (IE) 3000 series switches has (1) a community name of public for RO access and (2) a community name of private for RW access, which makes it easier for remote attackers to modify the configuration or obtain potentially sensitive information via SNMP requests, aka Bug ID CSCtf25589.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 12.2\(52\)se |
| Cisco | Industrial Ethernet 3000 | All versions |
Related Weaknesses (CWE)
References
- http://osvdb.org/66120
- http://secunia.com/advisories/40407Vendor Advisory
- http://securitytracker.com/id?1024173
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3891f.sVendor Advisory
- http://www.kb.cert.org/vuls/id/732671US Government Resource
- http://www.securityfocus.com/bid/41436
- http://www.vupen.com/english/advisories/2010/1754
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60145
- http://osvdb.org/66120
- http://secunia.com/advisories/40407Vendor Advisory
- http://securitytracker.com/id?1024173
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3891f.sVendor Advisory
- http://www.kb.cert.org/vuls/id/732671US Government Resource
- http://www.securityfocus.com/bid/41436
- http://www.vupen.com/english/advisories/2010/1754
FAQ
What is CVE-2010-1574?
CVE-2010-1574 is a vulnerability with a CVSS score of 10.0 (HIGH). IOS 12.2(52)SE and 12.2(52)SE1 on Cisco Industrial Ethernet (IE) 3000 series switches has (1) a community name of public for RO access and (2) a community name of private for RW access, which makes it...
How severe is CVE-2010-1574?
CVE-2010-1574 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-1574?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios, Cisco Industrial Ethernet 3000.