CVE-2011-3297

Cisco Firewall Services Module Software - Authentication Bypass

Title source: rule

Description

Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when certain authentication configurations are used, allows remote attackers to cause a denial of service (module crash) by making many authentication requests for network access, aka Bug ID CSCtn15697.

References (2)

Scores

EPSS 0.0101
EPSS Percentile 76.9%

Classification

CWE
CWE-287
Status draft

Affected Products (50)

cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
cisco/firewall_services_module_software
... and 35 more

Timeline

Published Oct 06, 2011
Tracked Since Feb 18, 2026