Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2006-0367
HistoryJan 22, 2006 - 8:03 p.m.

CVE-2006-0367

2006-01-2220:03:00
mitre
web.nvd.nist.gov
30
cisco
callmanager
vulnerability
authenticated users
admin privileges
web page

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

0.005

Percentile

76.3%

JSON

Unspecified vulnerability in Cisco CallManager 3.2 and earlier, 3.3 before 3.3(5)SR1, 4.0 before 4.0(2a)SR2c, and 4.1 before 4.1(3)SR2 allows remote authenticated users with read-only administrative privileges to obtain full administrative privileges via a “crafted URL on the CCMAdmin web page.”

Affected configurations

Nvd
Node
ciscocall_managerMatch1.0
OR
ciscocall_managerMatch2.0
OR
ciscocall_managerMatch3.0
OR
ciscocall_managerMatch3.1
OR
ciscocall_managerMatch3.1\(2\)
OR
ciscocall_managerMatch3.1\(3a\)
OR
ciscocall_managerMatch3.2
OR
ciscocall_managerMatch3.3
OR
ciscocall_managerMatch3.3\(3\)
OR
ciscocall_managerMatch3.3\(3\)es61
OR
ciscocall_managerMatch3.3\(4\)es25
OR
ciscocall_managerMatch3.3\(5\)
OR
ciscocall_managerMatch4.0
OR
ciscocall_managerMatch4.0\(2a\)es40
OR
ciscocall_managerMatch4.0\(2a\)sr2b
OR
ciscocall_managerMatch4.1\(2\)es33
OR
ciscocall_managerMatch4.1\(3\)es07
OR
ciscocall_managerMatch4.1\(3\)sr1
VendorProductVersionCPE
ciscocall_manager1.0cpe:2.3:h:cisco:call_manager:1.0:*:*:*:*:*:*:*
ciscocall_manager2.0cpe:2.3:h:cisco:call_manager:2.0:*:*:*:*:*:*:*
ciscocall_manager3.0cpe:2.3:h:cisco:call_manager:3.0:*:*:*:*:*:*:*
ciscocall_manager3.1cpe:2.3:h:cisco:call_manager:3.1:*:*:*:*:*:*:*
ciscocall_manager3.1(2)cpe:2.3:h:cisco:call_manager:3.1\(2\):*:*:*:*:*:*:*
ciscocall_manager3.1(3a)cpe:2.3:h:cisco:call_manager:3.1\(3a\):*:*:*:*:*:*:*
ciscocall_manager3.2cpe:2.3:h:cisco:call_manager:3.2:*:*:*:*:*:*:*
ciscocall_manager3.3cpe:2.3:h:cisco:call_manager:3.3:*:*:*:*:*:*:*
ciscocall_manager3.3(3)cpe:2.3:h:cisco:call_manager:3.3\(3\):*:*:*:*:*:*:*
ciscocall_manager3.3(3)es61cpe:2.3:h:cisco:call_manager:3.3\(3\)es61:*:*:*:*:*:*:*
Rows per page:
1-10 of 181

Related

prion 1
cvelist 1
cisco 1
nvd 1
prion
prion
Design/Logic Flaw
2006-01-22 20:03:00
cvelist
cvelist
CVE-2006-0367
2006-01-22 20:00:00
cisco
cisco
Cisco Call Manager Privilege Escalation
2006-01-18 16:00:00
nvd
nvd
CVE-2006-0367
2006-01-22 20:03:00

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

0.005

Percentile

76.3%

JSON
Related for CVE-2006-0367
prion1cvelist1cisco1nvd1