CVE-2012-1342
MEDIUMCisco Carrier Routing System - Incorrect Authorization
Title source: ruleDescription
Cisco Carrier Routing System (CRS) 3.9, 4.0, and 4.1 allows remote attackers to bypass ACL entries via fragmented packets, aka Bug ID CSCtj10975.
Scores
CVSS v3
5.8
EPSS
0.0015
EPSS Percentile
35.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Classification
CWE
CWE-863
Status
draft
Affected Products (3)
cisco/carrier_routing_system
cisco/carrier_routing_system
cisco/carrier_routing_system
Timeline
Published
Aug 06, 2012
Tracked Since
Feb 18, 2026