Detections
Analytics

CVE-2006-4313

critical

Description

Multiple unspecified vulnerabilities in Cisco VPN 3000 series concentrators before 4.1, 4.1.x up to 4.1(7)L, and 4.7.x up to 4.7(2)F allow attackers to execute the (1) CWD, (2) MKD, (3) CDUP, (4) RNFR, (5) SIZE, and (6) RMD FTP commands to modify files or create and delete directories via unknown vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/28539

http://www.vupen.com/english/advisories/2006/3368

http://www.securityfocus.com/bid/19680

http://www.osvdb.org/28139

http://www.osvdb.org/28138

http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml

http://securitytracker.com/id?1016737

http://secunia.com/advisories/21617

Details

Source: Mitre, NVD

Published: 2006-08-23

Updated: 2026-04-16

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.67665