CVE-1999-1582

HIGH

—CVSS v3

7.5CVSS v2

2.33% EPSS (exploit probability)

—CWE

Description

By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than intended if they do not understand this functionality.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE