FKIE_CVE-2009-2863
Vulnerability from fkie_nvd - Published: 2009-09-28 19:30 - Updated: 2026-06-16 23:10
Severity
Summary
Race condition in the Firewall Authentication Proxy feature in Cisco IOS 12.0 through 12.4 allows remote attackers to bypass authentication, or bypass the consent web page, via a crafted request, aka Bug ID CSCsy15227.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| cisco | ios | 12.0xk | |
| cisco | ios | 12.0xr | |
| cisco | ios | 12.1 | |
| cisco | ios | 12.1e | |
| cisco | ios | 12.1ex | |
| cisco | ios | 12.1t | |
| cisco | ios | 12.1xc | |
| cisco | ios | 12.1xh | |
| cisco | ios | 12.1xi | |
| cisco | ios | 12.1xj | |
| cisco | ios | 12.1xm | |
| cisco | ios | 12.1xp | |
| cisco | ios | 12.1xr | |
| cisco | ios | 12.1yb | |
| cisco | ios | 12.1yd | |
| cisco | ios | 12.1yf | |
| cisco | ios | 12.1yi | |
| cisco | ios | 12.2 | |
| cisco | ios | 12.2b | |
| cisco | ios | 12.2bw | |
| cisco | ios | 12.2cz | |
| cisco | ios | 12.2dd | |
| cisco | ios | 12.2ex | |
| cisco | ios | 12.2ey | |
| cisco | ios | 12.2fz | |
| cisco | ios | 12.2ira | |
| cisco | ios | 12.2irb | |
| cisco | ios | 12.2irc | |
| cisco | ios | 12.2ixa | |
| cisco | ios | 12.2ixb | |
| cisco | ios | 12.2ixc | |
| cisco | ios | 12.2ixd | |
| cisco | ios | 12.2ixe | |
| cisco | ios | 12.2ixf | |
| cisco | ios | 12.2ixg | |
| cisco | ios | 12.2s | |
| cisco | ios | 12.2sbc | |
| cisco | ios | 12.2se | |
| cisco | ios | 12.2sec | |
| cisco | ios | 12.2sed | |
| cisco | ios | 12.2see | |
| cisco | ios | 12.2sef | |
| cisco | ios | 12.2seg | |
| cisco | ios | 12.2sg | |
| cisco | ios | 12.2sga | |
| cisco | ios | 12.2sq | |
| cisco | ios | 12.2sra | |
| cisco | ios | 12.2srb | |
| cisco | ios | 12.2src | |
| cisco | ios | 12.2su | |
| cisco | ios | 12.2sx | |
| cisco | ios | 12.2sxa | |
| cisco | ios | 12.2sxb | |
| cisco | ios | 12.2sxd | |
| cisco | ios | 12.2sxe | |
| cisco | ios | 12.2sxf | |
| cisco | ios | 12.2sxh | |
| cisco | ios | 12.2sxi | |
| cisco | ios | 12.2t | |
| cisco | ios | 12.2tpc | |
| cisco | ios | 12.2xa | |
| cisco | ios | 12.2xb | |
| cisco | ios | 12.2xd | |
| cisco | ios | 12.2xe | |
| cisco | ios | 12.2xg | |
| cisco | ios | 12.2xj | |
| cisco | ios | 12.2xk | |
| cisco | ios | 12.2xl | |
| cisco | ios | 12.2xm | |
| cisco | ios | 12.2xo | |
| cisco | ios | 12.2xq | |
| cisco | ios | 12.2xt | |
| cisco | ios | 12.2xv | |
| cisco | ios | 12.2xw | |
| cisco | ios | 12.2ya | |
| cisco | ios | 12.2yb | |
| cisco | ios | 12.2yc | |
| cisco | ios | 12.2ye | |
| cisco | ios | 12.2yf | |
| cisco | ios | 12.2yh | |
| cisco | ios | 12.2yl | |
| cisco | ios | 12.2ym | |
| cisco | ios | 12.2yn | |
| cisco | ios | 12.2yq | |
| cisco | ios | 12.2yu | |
| cisco | ios | 12.2yv | |
| cisco | ios | 12.2yx | |
| cisco | ios | 12.2yz | |
| cisco | ios | 12.2zd | |
| cisco | ios | 12.2zh | |
| cisco | ios | 12.2zj | |
| cisco | ios | 12.2zl | |
| cisco | ios | 12.2zy | |
| cisco | ios | 12.2zya | |
| cisco | ios | 12.3 | |
| cisco | ios | 12.3b | |
| cisco | ios | 12.3jk | |
| cisco | ios | 12.3t | |
| cisco | ios | 12.3tpc | |
| cisco | ios | 12.3va | |
| cisco | ios | 12.3xa | |
| cisco | ios | 12.3xc | |
| cisco | ios | 12.3xd | |
| cisco | ios | 12.3xe | |
| cisco | ios | 12.3xf | |
| cisco | ios | 12.3xg | |
| cisco | ios | 12.3xk | |
| cisco | ios | 12.3xl | |
| cisco | ios | 12.3xq | |
| cisco | ios | 12.3xr | |
| cisco | ios | 12.3xx | |
| cisco | ios | 12.3ya | |
| cisco | ios | 12.3yd | |
| cisco | ios | 12.3yg | |
| cisco | ios | 12.3yh | |
| cisco | ios | 12.3yi | |
| cisco | ios | 12.3yk | |
| cisco | ios | 12.3ym | |
| cisco | ios | 12.3yt | |
| cisco | ios | 12.3yz | |
| cisco | ios | 12.4 | |
| cisco | ios | 12.4mr | |
| cisco | ios | 12.4t | |
| cisco | ios | 12.4xa | |
| cisco | ios | 12.4xd | |
| cisco | ios | 12.4xe | |
| cisco | ios | 12.4xf | |
| cisco | ios | 12.4xj | |
| cisco | ios | 12.4xk | |
| cisco | ios | 12.4xt | |
| cisco | ios | 12.4xv | |
| cisco | ios | 12.4xw | |
| cisco | ios | 12.4xy | |
| cisco | ios | 12.4xz | |
| cisco | ios | 12.4ya | |
| cisco | ios | 12.4yb |
{
"affected": [
{
"affectedData": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"source": "psirt@cisco.com"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios:12.0xk:*:*:*:*:*:*:*",
"matchCriteriaId": "26FA075D-4A9E-44EE-90CF-23947C9040EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.0xr:*:*:*:*:*:*:*",
"matchCriteriaId": "AC17E231-9256-4600-A33B-238E7E83CF85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1F2F9EC5-EDA2-4C99-BBF1-2F2C92AACE95",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1e:*:*:*:*:*:*:*",
"matchCriteriaId": "7126E176-D739-4102-8F10-1EEB8C6A219D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1ex:*:*:*:*:*:*:*",
"matchCriteriaId": "F4A85892-C3AB-4920-A949-A71BD0332D62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1t:*:*:*:*:*:*:*",
"matchCriteriaId": "752C3C6B-910D-4153-A162-DF255F60306B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1xc:*:*:*:*:*:*:*",
"matchCriteriaId": "2AD4A33B-B13E-40C6-B47F-A406ACC6664F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1xh:*:*:*:*:*:*:*",
"matchCriteriaId": "441CB9D6-5EDB-457B-B59E-D48B01AEAF5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1xi:*:*:*:*:*:*:*",
"matchCriteriaId": "28097F62-B51F-4A3B-BB31-6FA67E8C8B5A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1xj:*:*:*:*:*:*:*",
"matchCriteriaId": "80E8AF76-0A1D-4BAE-BF10-D63080352E6E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1xm:*:*:*:*:*:*:*",
"matchCriteriaId": "86E5CC41-1344-4A65-A653-8012ACE2CF2D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1xp:*:*:*:*:*:*:*",
"matchCriteriaId": "71FB7128-CF11-4903-97D7-418403A03CD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1xr:*:*:*:*:*:*:*",
"matchCriteriaId": "3A273401-9394-4BC3-879C-DE3EFC09B3F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1yb:*:*:*:*:*:*:*",
"matchCriteriaId": "884753D4-3AF0-4723-9D51-26BA7B4CA533",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1yd:*:*:*:*:*:*:*",
"matchCriteriaId": "BC38BD6C-9823-4D2A-8BE2-60AABE3C4932",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1yf:*:*:*:*:*:*:*",
"matchCriteriaId": "3BB103ED-B170-4193-84CD-4C59F4D6A10A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.1yi:*:*:*:*:*:*:*",
"matchCriteriaId": "63D55886-268F-4E4D-B00F-8A5D97A73BA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E4BC49F2-3DCB-45F0-9030-13F6415EE178",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2b:*:*:*:*:*:*:*",
"matchCriteriaId": "E314B0F7-1A27-483E-B3B3-947A5561281F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2bw:*:*:*:*:*:*:*",
"matchCriteriaId": "05B838C9-E60E-46A3-A5FB-4F67291D0851",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2cz:*:*:*:*:*:*:*",
"matchCriteriaId": "B7F75542-F2C5-4CEB-B655-E0620408A3B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2dd:*:*:*:*:*:*:*",
"matchCriteriaId": "BDC41749-91FC-43DB-A52F-AC3E3A2205C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ex:*:*:*:*:*:*:*",
"matchCriteriaId": "0912492E-565A-4559-ABB8-D2898F06CF29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ey:*:*:*:*:*:*:*",
"matchCriteriaId": "2CD6421A-D8C4-4A3E-9497-4AC130CFE597",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2fz:*:*:*:*:*:*:*",
"matchCriteriaId": "F2EB679F-FA51-47A1-BB3E-97AB517AFBB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ira:*:*:*:*:*:*:*",
"matchCriteriaId": "2424530B-2353-48F2-A076-0C44AAA4C89E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2irb:*:*:*:*:*:*:*",
"matchCriteriaId": "7B88D71E-C9CB-44D7-AB06-49CFF1117DA4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2irc:*:*:*:*:*:*:*",
"matchCriteriaId": "113CC627-7381-49DF-B384-CC70FB795EFF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ixa:*:*:*:*:*:*:*",
"matchCriteriaId": "DEDCF5A7-14E5-4E0C-88AD-7F891B5EFC66",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ixb:*:*:*:*:*:*:*",
"matchCriteriaId": "F7111CAE-9279-49DA-B05A-046BB3EFA85F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ixc:*:*:*:*:*:*:*",
"matchCriteriaId": "A4203A9F-BBC3-4BF2-B915-C3BF2EB73EAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ixd:*:*:*:*:*:*:*",
"matchCriteriaId": "E186AB2F-8C5B-45E0-9194-BF66DA64F772",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ixe:*:*:*:*:*:*:*",
"matchCriteriaId": "D32DCDA3-76B6-423C-9AF1-B65F19077909",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ixf:*:*:*:*:*:*:*",
"matchCriteriaId": "BCCE26DD-FE65-4041-AB4D-9C7A16EE175C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ixg:*:*:*:*:*:*:*",
"matchCriteriaId": "FE88965B-D148-43EB-9FC6-2EF5E5C917FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2s:*:*:*:*:*:*:*",
"matchCriteriaId": "2D035A35-D53E-4C49-B4E4-F40B85866F27",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sbc:*:*:*:*:*:*:*",
"matchCriteriaId": "F1579A2D-955F-4CC6-9F94-9D40C669D903",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2se:*:*:*:*:*:*:*",
"matchCriteriaId": "F05A548B-C443-4C15-B636-64C1F9B9860D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sec:*:*:*:*:*:*:*",
"matchCriteriaId": "A8F4B373-490C-463F-B518-89D0CABB852C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sed:*:*:*:*:*:*:*",
"matchCriteriaId": "9A2B4600-550F-4D5D-9BBD-E035025677BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2see:*:*:*:*:*:*:*",
"matchCriteriaId": "1F42A6D9-8CC3-49AF-AA56-96894CCE5AF5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sef:*:*:*:*:*:*:*",
"matchCriteriaId": "A4474AB2-AFF5-46F1-9066-54A4D6FA98C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2seg:*:*:*:*:*:*:*",
"matchCriteriaId": "7D81068C-7E72-4D5E-84CA-5942B9E8AB53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sg:*:*:*:*:*:*:*",
"matchCriteriaId": "E85ABE5E-7900-4A9C-A945-48B293EF46B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sga:*:*:*:*:*:*:*",
"matchCriteriaId": "43E166F3-931A-4997-B7B2-F2AD19C6F209",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sq:*:*:*:*:*:*:*",
"matchCriteriaId": "E5C38FE9-CEC6-4C5C-A4FD-CCD1D50BD040",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sra:*:*:*:*:*:*:*",
"matchCriteriaId": "A892B3F0-5A31-4086-8AB5-F06E68588EFC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2srb:*:*:*:*:*:*:*",
"matchCriteriaId": "D8E6BB50-7C0C-4E31-8DB0-40E145C8D9CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2src:*:*:*:*:*:*:*",
"matchCriteriaId": "8A0DA930-86CE-4D17-BD41-9C4E47D8088F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2su:*:*:*:*:*:*:*",
"matchCriteriaId": "FC70491B-F701-4D33-A314-C686469DBD2C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sx:*:*:*:*:*:*:*",
"matchCriteriaId": "4DE0B5B8-DEB1-4021-B854-177C0D9FD73A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sxa:*:*:*:*:*:*:*",
"matchCriteriaId": "E7A672BD-87AE-424D-8735-073BBE9CE164",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sxb:*:*:*:*:*:*:*",
"matchCriteriaId": "95C033E3-184B-4AC1-B10D-8318FEAF73FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sxd:*:*:*:*:*:*:*",
"matchCriteriaId": "FC1DDD7C-7921-45D3-81F7-4D9A407CBB5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sxe:*:*:*:*:*:*:*",
"matchCriteriaId": "5A68D177-B028-4025-BD7B-82ACDB2D1E21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sxf:*:*:*:*:*:*:*",
"matchCriteriaId": "485ACF9E-1305-4D71-A766-5BE1D748AAA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sxh:*:*:*:*:*:*:*",
"matchCriteriaId": "A7CCDB53-4F8B-4B90-9929-4E94CF414CDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2sxi:*:*:*:*:*:*:*",
"matchCriteriaId": "C03B0702-070F-48D5-9CBC-DB36D409A4EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2t:*:*:*:*:*:*:*",
"matchCriteriaId": "84900BB3-B49F-448A-9E04-FE423FBCCC4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2tpc:*:*:*:*:*:*:*",
"matchCriteriaId": "F6C1C831-556D-4634-AA24-6D64943ED275",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xa:*:*:*:*:*:*:*",
"matchCriteriaId": "EAC6758B-C6EE-45CB-AC2D-28C4AE709DD4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xb:*:*:*:*:*:*:*",
"matchCriteriaId": "075CD42D-070A-49BA-90D9-E7925BB41A38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xd:*:*:*:*:*:*:*",
"matchCriteriaId": "4AB8E66C-A16F-4CC5-9FDF-AE274FF035EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xe:*:*:*:*:*:*:*",
"matchCriteriaId": "746DDC61-3981-4E93-A7EE-C120E0265485",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xg:*:*:*:*:*:*:*",
"matchCriteriaId": "5AF2C6C2-58E8-4EA6-84FB-4D11F31490A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xj:*:*:*:*:*:*:*",
"matchCriteriaId": "EE896909-F8C3-4723-B5E7-9FB5FA2B73B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xk:*:*:*:*:*:*:*",
"matchCriteriaId": "9F9CDCE5-F6D3-4FA3-ADA0-EED2517FF7EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xl:*:*:*:*:*:*:*",
"matchCriteriaId": "7E03EE34-C398-43B4-A529-BE7BAFA4B3C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xm:*:*:*:*:*:*:*",
"matchCriteriaId": "21147732-FA22-4728-B5F2-D115B78A8EDB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xo:*:*:*:*:*:*:*",
"matchCriteriaId": "1EE03B1E-1522-4143-A019-B19E1F605A4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xq:*:*:*:*:*:*:*",
"matchCriteriaId": "4B40548F-3914-4227-9E4C-F1B34071C069",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xt:*:*:*:*:*:*:*",
"matchCriteriaId": "9B09B72E-6862-4115-9A0B-574089A94289",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xv:*:*:*:*:*:*:*",
"matchCriteriaId": "FBB42063-9DB5-42DB-825A-53C6DBB51A57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xw:*:*:*:*:*:*:*",
"matchCriteriaId": "6E5C90EE-A9C0-461C-9E89-732BFA9BD066",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ya:*:*:*:*:*:*:*",
"matchCriteriaId": "E74B6350-C2F8-4786-8E32-2ED6C188A5E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yb:*:*:*:*:*:*:*",
"matchCriteriaId": "F8E26473-A8EF-44C5-B550-5E0B86D31291",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yc:*:*:*:*:*:*:*",
"matchCriteriaId": "663FE3CE-FA09-46A2-9C0D-2797D9137A82",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ye:*:*:*:*:*:*:*",
"matchCriteriaId": "761D49D6-0624-41CE-829E-49E7EA679EF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yf:*:*:*:*:*:*:*",
"matchCriteriaId": "9BFAF394-6E9A-4CD6-B8A6-5BDDE4EC8EC4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yh:*:*:*:*:*:*:*",
"matchCriteriaId": "8B6DB954-EDC8-4A81-8C26-9D3DBC68FC67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yl:*:*:*:*:*:*:*",
"matchCriteriaId": "059FBAA6-3127-4DF9-99AD-AA3A16317B6D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2ym:*:*:*:*:*:*:*",
"matchCriteriaId": "0E0E376F-64E1-4632-9A8E-11DC99FB245F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yn:*:*:*:*:*:*:*",
"matchCriteriaId": "BF440B52-C6AE-4608-BE71-01B354D37BEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yq:*:*:*:*:*:*:*",
"matchCriteriaId": "DE72804E-600D-47FA-B3BF-36BD3CF13A75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yu:*:*:*:*:*:*:*",
"matchCriteriaId": "54B41182-7AA8-49D1-BAC3-EAF312E43553",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yv:*:*:*:*:*:*:*",
"matchCriteriaId": "E11BBB83-147B-4FBF-B263-77FCCFB2D92D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yx:*:*:*:*:*:*:*",
"matchCriteriaId": "E70E5B1F-E72C-4DAB-B6FA-977EF04BFBDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2yz:*:*:*:*:*:*:*",
"matchCriteriaId": "A3C26842-FF50-436F-8DB6-15A70082CD1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2zd:*:*:*:*:*:*:*",
"matchCriteriaId": "ECB4BA74-BE9F-43D5-9D0F-78F4F2BB19B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2zh:*:*:*:*:*:*:*",
"matchCriteriaId": "574FFD6F-D56C-41DB-A978-E501BA3CA5D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2zj:*:*:*:*:*:*:*",
"matchCriteriaId": "11790F38-3720-45CF-9FD4-A8E5867684D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2zl:*:*:*:*:*:*:*",
"matchCriteriaId": "4AE2282B-6693-4E4B-8662-501EBC14CD9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2zy:*:*:*:*:*:*:*",
"matchCriteriaId": "E83649EC-61A5-4937-93F4-42D082023382",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2zya:*:*:*:*:*:*:*",
"matchCriteriaId": "5D8830A0-E816-40C4-8743-A9E0994BA922",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*",
"matchCriteriaId": "0668C45B-9D25-424B-B876-C1721BFFE5DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3b:*:*:*:*:*:*:*",
"matchCriteriaId": "292F6F99-19B3-4106-A432-5DE916CCDD56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3jk:*:*:*:*:*:*:*",
"matchCriteriaId": "332B0446-4D8B-414B-B572-84B45D5643AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3t:*:*:*:*:*:*:*",
"matchCriteriaId": "C0C3B413-76F7-413B-A51F-29834F9DE722",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3tpc:*:*:*:*:*:*:*",
"matchCriteriaId": "841CDC5F-8F0E-4AE7-A7A9-960E0A8C66B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3va:*:*:*:*:*:*:*",
"matchCriteriaId": "B418CFDD-AF36-46F9-B347-B34E72100F95",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xa:*:*:*:*:*:*:*",
"matchCriteriaId": "84C89CFF-64BB-4058-9C49-C6BF3E5D8DB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xc:*:*:*:*:*:*:*",
"matchCriteriaId": "A9F12741-69FB-46DD-A670-8461492B338A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xd:*:*:*:*:*:*:*",
"matchCriteriaId": "7EC2D158-6174-4AE8-83DA-125B072B6980",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xe:*:*:*:*:*:*:*",
"matchCriteriaId": "A5688D88-A550-43EB-8854-2E132EC71156",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xf:*:*:*:*:*:*:*",
"matchCriteriaId": "8218E2D3-4F1E-440F-A2B2-A68D4692BB17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xg:*:*:*:*:*:*:*",
"matchCriteriaId": "6BE2132D-CF21-49F1-BC66-FA6CDB6D72BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xk:*:*:*:*:*:*:*",
"matchCriteriaId": "1018E04C-5575-4D1A-B482-D1CDB9AD6A50",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xl:*:*:*:*:*:*:*",
"matchCriteriaId": "68FC4904-1F4D-4E10-AF95-911B07827598",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xq:*:*:*:*:*:*:*",
"matchCriteriaId": "86B9E611-3F06-424C-96EF-EE4997C70AB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xr:*:*:*:*:*:*:*",
"matchCriteriaId": "E0A5760A-9FFE-4941-B2BD-7DD54B1E1B37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3xx:*:*:*:*:*:*:*",
"matchCriteriaId": "A1976E53-85A6-494F-B8AC-847E7988850C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3ya:*:*:*:*:*:*:*",
"matchCriteriaId": "320C5597-68BE-4899-9EBB-9B4DEE8EA7DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3yd:*:*:*:*:*:*:*",
"matchCriteriaId": "520304A4-EB15-42A8-A402-8251A4D2076D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3yg:*:*:*:*:*:*:*",
"matchCriteriaId": "CA88C064-898F-4C0D-A266-D7B3509C28A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3yh:*:*:*:*:*:*:*",
"matchCriteriaId": "139B1182-61A3-4F3D-9E29-758F27917646",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3yi:*:*:*:*:*:*:*",
"matchCriteriaId": "0CC3706F-B00A-405E-917E-7FD5217E0501",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3yk:*:*:*:*:*:*:*",
"matchCriteriaId": "1DF4D0E3-8015-4D6F-8364-B6EEAAE67971",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3ym:*:*:*:*:*:*:*",
"matchCriteriaId": "2595DCBA-E6F2-4551-A804-4DBB137F076B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3yt:*:*:*:*:*:*:*",
"matchCriteriaId": "A25C42FA-37F4-4B7F-AFCA-D7F081F58CF4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.3yz:*:*:*:*:*:*:*",
"matchCriteriaId": "1938D118-C07F-4BEC-8030-947F099BFCB8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*",
"matchCriteriaId": "9D4D8C72-E7BB-40BF-9AE5-622794D63E09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4mr:*:*:*:*:*:*:*",
"matchCriteriaId": "C7414D32-88A1-416E-A717-3F47B6D1BE74",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4t:*:*:*:*:*:*:*",
"matchCriteriaId": "BEAD7398-D1B2-47FB-952D-8C3162D5A363",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xa:*:*:*:*:*:*:*",
"matchCriteriaId": "99235FFB-4439-40B2-ADBD-B08E5DBBCCB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xd:*:*:*:*:*:*:*",
"matchCriteriaId": "6B78181E-E1D1-4C25-85DE-CA46BBF21765",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xe:*:*:*:*:*:*:*",
"matchCriteriaId": "C1F36C3D-E9A2-41A1-BE71-4D8B00D228E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xf:*:*:*:*:*:*:*",
"matchCriteriaId": "7D1CD80F-E898-41CE-8A86-28C2F48B928A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xj:*:*:*:*:*:*:*",
"matchCriteriaId": "BF610051-1638-4C1B-9864-11E34EFC4DE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xk:*:*:*:*:*:*:*",
"matchCriteriaId": "78260223-50C0-48F8-9A65-AE67489E602C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xt:*:*:*:*:*:*:*",
"matchCriteriaId": "DFED1FFB-899D-4A48-9CCA-0B8737AE1408",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xv:*:*:*:*:*:*:*",
"matchCriteriaId": "883FA166-2973-42BA-842D-28FBDBFEAC4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xw:*:*:*:*:*:*:*",
"matchCriteriaId": "4362045B-7065-4FF9-A977-B3DA7894F831",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xy:*:*:*:*:*:*:*",
"matchCriteriaId": "BC27E79D-6B4B-4839-9664-DFE821C45C2E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4xz:*:*:*:*:*:*:*",
"matchCriteriaId": "4963A243-74FA-43AD-9645-C9FAD527A6E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4ya:*:*:*:*:*:*:*",
"matchCriteriaId": "31C6EACA-35BE-4032-93DA-5F738AEE0F4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4yb:*:*:*:*:*:*:*",
"matchCriteriaId": "E67621EA-25D8-47C2-ADEA-512E38F2FFE3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Race condition in the Firewall Authentication Proxy feature in Cisco IOS 12.0 through 12.4 allows remote attackers to bypass authentication, or bypass the consent web page, via a crafted request, aka Bug ID CSCsy15227."
},
{
"lang": "es",
"value": "Una condici\u00f3n de carrera en la funci\u00f3n Firewall Authentication Proxy de Cisco IOS v12.0 hasta la v12.4 permite a atacantes remotos evitar la autenticaci\u00f3n, o saltarse la p\u00e1gina web de la autorizaci\u00f3n, a trav\u00e9s de una solicitud debidamente modificada. Se trata del Bug ID CSCsy15227."
}
],
"id": "CVE-2009-2863",
"lastModified": "2026-06-16T23:10:23.047",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2009-09-28T19:30:01.313",
"references": [
{
"source": "psirt@cisco.com",
"url": "http://osvdb.org/58340"
},
{
"source": "psirt@cisco.com",
"tags": [
"Vendor Advisory"
],
"url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=18882"
},
{
"source": "psirt@cisco.com",
"tags": [
"Vendor Advisory"
],
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8132.shtml"
},
{
"source": "psirt@cisco.com",
"url": "http://www.securityfocus.com/bid/36491"
},
{
"source": "psirt@cisco.com",
"url": "http://www.securitytracker.com/id?1022935"
},
{
"source": "psirt@cisco.com",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53453"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://osvdb.org/58340"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=18882"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8132.shtml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/36491"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id?1022935"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53453"
}
],
"sourceIdentifier": "psirt@cisco.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…