CVE-2000-0368

Cisco IOS < 9.1 - Unauthenticated Exposure of Sensitive Command History

Title source: llm
STIX 2.1

Description

Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.

References (2)

Core 2
Core References
Patch, Vendor Advisory third-party-advisory government-resource x_refsource_ciac
http://www.ciac.org/ciac/bulletins/j-009.shtml
Patch, Vendor Advisory vendor-advisory x_refsource_cisco
http://www.cisco.com/warp/public/770/ioshist-pub.shtml

Scores

EPSS 0.0037
EPSS Percentile 29.0%

Details

CWE
CWE-200
Status published
Products (1)
cisco/ios < 9.1
Published Mar 12, 2001
Tracked Since Feb 18, 2026