CVE-2009-0742

CVE Database · CVE-2009-0742

CVE-2009-0742

· N/AModified

CVSS v3.1

N/A

EPSS

1.06%

Published

Feb 26, 2009

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The username command in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers and Cisco ACE 4710 Application Control Engine Appliance stores a cleartext password by default, which allows context-dependent attackers to obtain sensitive information.

Weaknesses (CWE)

CWE-310

Affected Products (4)

cisco · application_control_engine_modulevulnerable

cisco · catalyst_6500

cisco · catalyst_7600

cisco · ace_4710vulnerable

References (2)

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

PatchVendor Advisory

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

PatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs