{"api_version":"1","generated_at":"2026-04-23T06:30:59+00:00","cve":"CVE-2001-0621","urls":{"html":"https://cve.report/CVE-2001-0621","api":"https://cve.report/api/cve/CVE-2001-0621.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2001-0621","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2001-0621"},"summary":{"title":"CVE-2001-0621","description":"The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands.","state":"PUBLISHED","assigner":"mitre","published_at":"2001-08-14 04:00:00","updated_at":"2025-04-03 01:03:51"},"problem_types":["NVD-CWE-Other","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"7.5","severity":"","vector":"AV:N/AC:L/Au:N/C:P/I:P/A:P","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"}}],"references":[{"url":"http://www.cisco.com/warp/public/707/arrowpoint-ftp-pub.shtml","name":"http://www.cisco.com/warp/public/707/arrowpoint-ftp-pub.shtml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Cisco Security Advisory: Cisco Content Service Switch 11000 Series FTP Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/6557","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/6557","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/2745","name":"http://www.securityfocus.com/bid/2745","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Cisco Content Service Switch FTP Access Control Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://www.ciac.org/ciac/bulletins/l-085.shtml","name":"http://www.ciac.org/ciac/bulletins/l-085.shtml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Cisco Content Service Switch FTP Vulnerability","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://www.osvdb.org/1834","name":"http://www.osvdb.org/1834","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"404 Not Found","mime":"text/html","httpstatus":"404","archivestatus":"403"},{"url":"https://www.cve.org/CVERecord?id=CVE-2001-0621","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2001-0621","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2001","cve_id":"621","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"content_services_switch_11000","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-08T04:30:05.966Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"L-085","tags":["third-party-advisory","government-resource","x_refsource_CIAC","x_transferred"],"url":"http://www.ciac.org/ciac/bulletins/l-085.shtml"},{"name":"cisco-css-ftp-commands(6557)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/6557"},{"name":"2745","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/2745"},{"name":"20010517 Cisco Content Service Switch 11000 Series FTP Vulnerability","tags":["vendor-advisory","x_refsource_CISCO","x_transferred"],"url":"http://www.cisco.com/warp/public/707/arrowpoint-ftp-pub.shtml"},{"name":"1834","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://www.osvdb.org/1834"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2001-05-17T00:00:00.000Z","descriptions":[{"lang":"en","value":"The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2002-03-01T10:00:00.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"L-085","tags":["third-party-advisory","government-resource","x_refsource_CIAC"],"url":"http://www.ciac.org/ciac/bulletins/l-085.shtml"},{"name":"cisco-css-ftp-commands(6557)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/6557"},{"name":"2745","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/2745"},{"name":"20010517 Cisco Content Service Switch 11000 Series FTP Vulnerability","tags":["vendor-advisory","x_refsource_CISCO"],"url":"http://www.cisco.com/warp/public/707/arrowpoint-ftp-pub.shtml"},{"name":"1834","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://www.osvdb.org/1834"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2001-0621","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"L-085","refsource":"CIAC","url":"http://www.ciac.org/ciac/bulletins/l-085.shtml"},{"name":"cisco-css-ftp-commands(6557)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/6557"},{"name":"2745","refsource":"BID","url":"http://www.securityfocus.com/bid/2745"},{"name":"20010517 Cisco Content Service Switch 11000 Series FTP Vulnerability","refsource":"CISCO","url":"http://www.cisco.com/warp/public/707/arrowpoint-ftp-pub.shtml"},{"name":"1834","refsource":"OSVDB","url":"http://www.osvdb.org/1834"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2001-0621","datePublished":"2002-03-09T05:00:00.000Z","dateReserved":"2001-07-27T00:00:00.000Z","dateUpdated":"2024-08-08T04:30:05.966Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2001-08-14 04:00:00","lastModifiedDate":"2025-04-03 01:03:51","problem_types":["NVD-CWE-Other","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:cisco:content_services_switch_11000:*:*:*:*:*:*:*:*","matchCriteriaId":"98FC94DE-BBD2-43C6-9435-0242BA5DCC8C"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2001","CveId":"621","Ordinal":"1","Title":"CVE-2001-0621","CVE":"CVE-2001-0621","Year":"2001"},"notes":[{"CveYear":"2001","CveId":"621","Ordinal":"1","NoteData":"The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands.","Type":"Description","Title":"CVE-2001-0621"},{"CveYear":"2001","CveId":"621","Ordinal":"2","NoteData":"2002-03-09","Type":"Other","Title":"Published"},{"CveYear":"2001","CveId":"621","Ordinal":"3","NoteData":"2002-03-01","Type":"Other","Title":"Modified"}]}}}