CVE-2015-6365
Cisco IOS 15.2(04)M and 15.4(03)M - Authenticated ACL Bypass via PPP Interface
Title source: llmDescription
Cisco IOS 15.2(04)M and 15.4(03)M lets physical-interface ACLs supersede virtual PPP interface ACLs, which allows remote authenticated users to bypass intended network-traffic restrictions in opportunistic circumstances by using PPP, aka Bug ID CSCur61303.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-ios1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1034158
Scores
EPSS
0.0137
EPSS Percentile
68.7%
Details
CWE
CWE-20
Status
published
Products (2)
cisco/ios
15.2\(4\)m
cisco/ios
15.4\(3\)m
Published
Nov 14, 2015
Tracked Since
Feb 18, 2026