CVE-2001-0056

high

Description

The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/5628

http://www.cisco.com/warp/public/707/CBOS-multiple.shtml

Details

Source: Mitre, NVD

Published: 2001-02-16

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.0075