Vulnerability Description
Cisco EPC3928 devices allow remote attackers to obtain sensitive configuration and credential information by making requests during the early part of the boot process, related to a "Boot Information Disclosure" issue, aka Bug ID CSCux17178.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Epc3928 Firmware | - |
| Cisco | Epc3928 | All versions |
Related Weaknesses (CWE)
References
- http://secorda.com/multiple-security-vulnerabilities-affecting-cisco-epc3928/ExploitURL Repurposed
- http://www.securityfocus.com/archive/1/538627/100/0/threaded
- http://www.securityfocus.com/bid/91541
- https://www.exploit-db.com/exploits/39904/
- http://secorda.com/multiple-security-vulnerabilities-affecting-cisco-epc3928/ExploitURL Repurposed
- http://www.securityfocus.com/archive/1/538627/100/0/threaded
- http://www.securityfocus.com/bid/91541
- https://www.exploit-db.com/exploits/39904/
FAQ
What is CVE-2016-1337?
CVE-2016-1337 is a vulnerability with a CVSS score of 8.1 (HIGH). Cisco EPC3928 devices allow remote attackers to obtain sensitive configuration and credential information by making requests during the early part of the boot process, related to a "Boot Information D...
How severe is CVE-2016-1337?
CVE-2016-1337 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-1337?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Epc3928 Firmware, Cisco Epc3928.