OpenCVE

The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Broadband Operating System

Configuration 1 [-]

cpe:2.3:o:cisco:broadband_operating_system:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.cisco.com/warp/public/707/CBOS-multiple.shtml
https://exchange.xforce.ibmcloud.com/vulnerabilities/5628

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2001-05-07T04:00:00

Updated: 2024-08-08T04:06:55.314Z

Reserved: 2001-02-01T00:00:00

Link: CVE-2001-0056

Vulnrichment

No data.

NVD

Status : Modified

Published: 2001-02-16T05:00:00.000

Modified: 2024-11-20T23:34:29.703

Link: CVE-2001-0056

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2000-12-04T00:00:00", "descriptions": [{"lang": "en", "value": "The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2005-11-02T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "cisco-cbos-invalid-login(5628)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5628"}, {"name": "20001204 Multiple Vulnerabilities in CBOS", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/CBOS-multiple.shtml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2001-0056", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "cisco-cbos-invalid-login(5628)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5628"}, {"name": "20001204 Multiple Vulnerabilities in CBOS", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/CBOS-multiple.shtml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T04:06:55.314Z"}, "title": "CVE Program Container", "references": [{"name": "cisco-cbos-invalid-login(5628)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5628"}, {"name": "20001204 Multiple Vulnerabilities in CBOS", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/warp/public/707/CBOS-multiple.shtml"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2001-0056", "datePublished": "2001-05-07T04:00:00", "dateReserved": "2001-02-01T00:00:00", "dateUpdated": "2024-08-08T04:06:55.314Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}