CVE-2001-0621
CVE-2001-0621 is a high-severity vulnerability in Cisco Content Services Switch 11000 with a CVSS 2.0 base score of 7.5. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: High (CVSS 2.0 base score 7.5)
- EPSS exploit prediction: 1% (69th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Cisco Content Services Switch 11000
- Published:
- Last modified:
Description
The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands.
Frequently asked questions
- What is CVE-2001-0621?
- The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands.
- How severe is CVE-2001-0621?
- CVE-2001-0621 has a CVSS 2.0 base score of 7.5, rated high severity.
- Is CVE-2001-0621 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (69th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2001-0621?
- CVE-2001-0621 affects Cisco Content Services Switch 11000. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2001-0621?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2001-0621 published?
- CVE-2001-0621 was published on 2001-08-14 and last updated on 2026-06-16.
References
- http://www.ciac.org/ciac/bulletins/l-085.shtml
- http://www.cisco.com/warp/public/707/arrowpoint-ftp-pub.shtml
- http://www.osvdb.org/1834
- http://www.securityfocus.com/bid/2745
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6557
Affected products (1)
- cpe:2.3:h:cisco:content_services_switch_11000:*:*:*:*:*:*:*:*
More vulnerabilities in Cisco Content Services Switch 11000
- CVE-2002-0870 — High (CVSS 7.5): The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability…
- CVE-2001-0622 — High (CVSS 7.5): The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29s or WebNS 4.10B17s…
- CVE-2006-4352 — Medium (CVSS 5.0): The ArrowPoint cookie functionality for Cisco 11000 series Content Service Switches specifies an internal IP address if…
- CVE-2005-0356 — Medium (CVSS 5.0): Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled…
- CVE-2004-0352 — Medium (CVSS 5.0): Cisco 11000 Series Content Services Switches (CSS) running WebNS 5.0(x) before 05.0(04.07)S, and 6.10(x) before…
- CVE-2003-1132 — Medium (CVSS 5.0): The DNS server for Cisco Content Service Switch (CSS) 11000 and 11500, when prompted for a nonexistent AAAA record,…