Skip to content
Monday, December 8, 2025
Critical Published: Jul 21, 2001 Modified: Apr 03, 2025

CVE-2001-0537

9.3 CVSS
0 5 10
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Export:
Share:
Link copied!

Description

HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.

CVSS Vector Details

Attack Vector Network
Attack Complexity M
Confidentiality C
Integrity C
Availability C

Affected Software Configurations

  • o cisco ios 11.3 * * * * * * *
  • o cisco ios 11.3aa * * * * * * *
  • o cisco ios 11.3da * * * * * * *
  • o cisco ios 11.3db * * * * * * *
  • o cisco ios 11.3ha * * * * * * *
  • o cisco ios 11.3ma * * * * * * *
  • o cisco ios 11.3na * * * * * * *
  • o cisco ios 11.3t * * * * * * *
  • o cisco ios 11.3xa * * * * * * *
  • o cisco ios 12.0 * * * * * * *

Weaknesses (CWE)

  • CWE-287

References & External Links

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More
← Back to CVE Tracker