Unrated severityNVD Advisory· Published Jun 18, 2001· Updated Apr 16, 2026

CVE-2001-0427

Description

Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via a flood of invalid login requests to (1) the SSL service, or (2) the telnet service, which do not properly disconnect the user after several failed login attempts.

Affected products

Cisco Systems, Inc./Vpn 3000 Concentrator
cpe:2.3:h:cisco:vpn_3000_concentrator:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Vpn 3005 Concentrator
cpe:2.3:h:cisco:vpn_3005_concentrator:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Vpn 3015 Concentrator
cpe:2.3:h:cisco:vpn_3015_concentrator:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Vpn 3030 Concentator
cpe:2.3:h:cisco:vpn_3030_concentator:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Vpn 3060 Concentrator
cpe:2.3:h:cisco:vpn_3060_concentrator:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Vpn 3080 Concentrator
cpe:2.3:h:cisco:vpn_3080_concentrator:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/warp/public/707/vpn3k-telnet-vuln-pub.shtmlnvdPatchVendor Advisory
www.osvdb.org/5643nvd
exchange.xforce.ibmcloud.com/vulnerabilities/6298nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000