CVE-2011-2581

CVE Database · CVE-2011-2581

CVE-2011-2581

· N/AModified

CVSS v3.1

N/A

EPSS

1.99%

Published

Sep 14, 2011

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The ACL implementation in Cisco NX-OS 5.0(2) and 5.0(3) before 5.0(3)N2(1) on Nexus 5000 series switches, and NX-OS before 5.0(3)U1(2a) on Nexus 3000 series switches, does not properly handle comments in conjunction with deny statements, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by sending packets, aka Bug IDs CSCto09813 and CSCtr61490.

Weaknesses (CWE)

CWE-264

Affected Products (12)

cisco · nx-osvulnerable

cisco · nexus_5000vulnerable

cisco · nx-osvulnerable

cisco · nx-os

References (6)

http://secunia.com/advisories/45883

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9250c.shtml

Vendor Advisory

http://www.securitytracker.com/id?1026019

http://secunia.com/advisories/45883

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9250c.shtml

Vendor Advisory

http://www.securitytracker.com/id?1026019

KEV Catalog EPSS Scores Vendors All CVEs