{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-03-30T00:00:00", "descriptions": [{"lang": "en", "value": "The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control (NAC) Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-05T16:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "1025272", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1025272"}, {"name": "20110330 Cisco Network Admission Control Guest Server System Software Authentication Bypass Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2011-0963", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control (NAC) Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1025272", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1025272"}, {"name": "20110330 Cisco Network Admission Control Guest Server System Software Authentication Bypass Vulnerability", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:14:26.455Z"}, "title": "CVE Program Container", "references": [{"name": "1025272", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1025272"}, {"name": "20110330 Cisco Network Admission Control Guest Server System Software Authentication Bypass Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2011-0963", "datePublished": "2011-03-31T22:00:00", "dateReserved": "2011-02-10T00:00:00", "dateUpdated": "2024-08-06T22:14:26.455Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:nac_guest_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "0948BDF8-94FA-4911-907A-6D0B1A820472", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "495B5D55-0941-451B-998E-41E6FEC17E16", "versionEndIncluding": "2.0.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "AFC043FE-B7C8-416A-985D-18C2FC59E780", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "5587EBF9-CB6E-4429-BC1A-E029657160E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "7297C9B5-E37E-48A6-B5FB-87EEBF25EC63", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "A9C63282-A4E2-4BC4-93B8-B2CBF3ABE4C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "DAE1F91B-37A0-4992-AE23-1E0473243F3C", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "E06B4395-92AA-4DE3-B4B5-D48843BF850B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "294DCA83-6F8F-4381-85DD-0C1FF66537A8", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control (NAC) Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922."}, {"lang": "es", "value": "La configuraci\u00f3n por defecto de la funcionalidad de autenticaci\u00f3n RADIUS en el Cisco Network Admission Control (NAC) Guest Server con software en versiones anteriores a 2.0.3 permite a atacantes remotos eludir las restricciones destinadas al acceso y obtener conectividad de red a trav\u00e9s de vectores no especificados, vulnerabilidad tambi\u00e9n conocida como Bug ID CSCtj66922."}], "id": "CVE-2011-0963", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-03-31T22:55:02.973", "references": [{"source": "psirt@cisco.com", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}, {"source": "psirt@cisco.com", "url": "http://www.securitytracker.com/id?1025272"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1025272"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}