← Back

CVE-2002-1554

nvd nist
Published: Mar 31, 2003Modified: Apr 16, 2026

JSON object

Loading...
4.6
Vector
AV:L/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 3.9 / Impact: 6.4
Source: NVD

Description

Cisco ONS15454 and ONS15327 running ONS before 3.4 stores usernames and passwords in cleartext in the image database for the TCC, TCC+ or XTC, which could allow attackers to gain privileges by obtaining the passwords from the image database or a backup.

Affected (5)

Cisco
1 product
Optical Networking Systems Software
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Optical Networking Systems Software
Version 3.0
Optical Networking Systems Software
Version 3.1.0
Optical Networking Systems Software
Version 3.2.0
Optical Networking Systems Software
Version 3.2
Optical Networking Systems Software
Version 3.3.0

References (6)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.