Vulnerabilities > Cisco > VPN 5000 Concentrator Series Software > 5.2.23.0003
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-08-12 | CVE-2002-0848 | Unspecified vulnerability in Cisco VPN 5000 Concentrator Series Software Cisco VPN 5000 series concentrator hardware 6.0.21.0002 and earlier, and 5.2.23.0003 and earlier, when using RADIUS with a challenge type of Password Authentication Protocol (PAP) or Challenge, sends the user password in cleartext in a validation retry request, which could allow remote attackers to steal passwords via sniffing. | 5.0 |