Back
CVE-1999-1466
Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.
Published: Dec 10, 1992
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (4)
| Vendor | Product | Version |
|---|---|---|
| cisco | ios | 8.2 |
| cisco | ios | 8.3 |
| cisco | ios | 9.0 |
| cisco | ios | 9.1 |
GitHub Security Advisory GHSA-f5hf-wrxf-wr76
Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access...
References (4)
- http://www.cert.org/advisories/CA-1992-20.html Patch, Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/53 Patch, Vendor Advisory
- http://www.cert.org/advisories/CA-1992-20.html Patch, Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/53 Patch, Vendor Advisory
Risk Scores
CVSS Score
7.5 / 10
EPSS Score
0.30%
Top 47% most likely to be exploited
Threat Score
30.1 / 100
Data Sources
NVD
EPSS
GitHub