CVE-2010-1574

Name of the Vulnerable Software and Affected Versions Cisco Industrial Ethernet 3000 series switches versions 12.2(52)SE through 12.2(52)SE1

Description The issue arises from the use of well-known SNMP community names, public for read-only access and private for read-write access, which are hard-coded in the system. This makes it easier for remote attackers to modify the configuration or obtain potentially sensitive information via SNMP requests.

Recommendations For versions 12.2(52)SE and 12.2(52)SE1, perform a Cisco IOS Software upgrade to a version that addresses this issue. As a temporary workaround, consider deploying the mitigation measures outlined in the Workarounds section to minimize the risk of exploitation.