VDB
CVE-2001-0537
CVE-2001-0537
PUBLISHED
CVSS 9.300000190734863 CRITICAL
HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
EPSS 93.77% · 99.9th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
93.77%
99.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | ios | *, 11.3, 11.3da |
| n/a | n/a | n/a |
Exploit Intelligence
- CIRCL seen: CVE-2001-0537 (circl-sighting)
- CIRCL seen: CVE-2001-0537 (circl-sighting)
- CIRCL exploited: CVE-2001-0537 (circl-sighting)
- CIRCL seen: CVE-2001-0537 (circl-sighting)
- CIRCL exploited: CVE-2001-0537 (circl-sighting)
- CIRCL exploited: CVE-2001-0537 (circl-sighting)
- CIRCL exploited: CVE-2001-0537 (circl-sighting)
- CIRCL exploited: CVE-2001-0537 (circl-sighting)
- CIRCL exploited: CVE-2001-0537 (circl-sighting)
- CIRCL exploited: CVE-2001-0537 (circl-sighting)
…and 161 more exploits
Timeline
- Jun 27, 2000 CVE Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jun 16, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- CA-2001-14 third-party-advisory
- 20010629 Re: Cisco Security Advisory: IOS HTTP authorization vulnerability mailing-list
- 20010627 IOS HTTP authorization vulnerability vendor-advisory
- 20010702 ios-http-auth.sh mailing-list
- 20010702 Cisco IOS HTTP Configuration Exploit mailing-list
- 578 vdb
- 20010702 Cisco device HTTP exploit... mailing-list
- L-106 third-party-advisory
- 2936 vdb
- cisco-ios-admin-access(6749) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2001-0537 advisory
- http://www.securityfocus.com/archive/1/1601227034.20010702112207@olympos.org url
- http://www.securityfocus.com/archive/1/20010703011650.60515.qmail@web14910.mail.yahoo.com url
- http://www.securityfocus.com/archive/1/4.3.2.7.2.20010629095801.0c3e6a70@brussels.cisco.com url
- http://www.securityfocus.com/archive/1/Pine.LNX.3.96.1010702134611.22995B-100000@Lib-Vai.lib.asu.edu url