CVE-2015-6365

Cisco IOS 15.2(04)M and 15.4(03)M - Authenticated ACL Bypass via PPP Interface

Title source: llm
STIX 2.1

Description

Cisco IOS 15.2(04)M and 15.4(03)M lets physical-interface ACLs supersede virtual PPP interface ACLs, which allows remote authenticated users to bypass intended network-traffic restrictions in opportunistic circumstances by using PPP, aka Bug ID CSCur61303.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1034158

Scores

EPSS 0.0137
EPSS Percentile 68.7%

Details

CWE
CWE-20
Status published
Products (2)
cisco/ios 15.2\(4\)m
cisco/ios 15.4\(3\)m
Published Nov 14, 2015
Tracked Since Feb 18, 2026