Lucene search

[email protected]CVE-2010-2975

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-2975

2022-10-0316:21:09

CWE-200

[email protected]

web.nvd.nist.gov

cisco

uwn

ssh

vulnerability

cve-2010-2975

nvd

csctg51544

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.6%

JSON

Cisco Unified Wireless Network (UWN) Solution 7.x through 7.0.98.0 does not properly handle multiple SSH sessions, which allows physically proximate attackers to read a password, related to an “arrow key failure,” aka Bug ID CSCtg51544.

Affected configurations

NVD

Node

ciscounified_wireless_network_solution_softwareMatch7.0

ciscounified_wireless_network_solution_softwareMatch7.0.98.0

CPENameOperatorVersion
cisco:unified_wireless_network_solution_softwarecisco unified wireless network solution softwareeq7.0
cisco:unified_wireless_network_solution_softwarecisco unified wireless network solution softwareeq7.0.98.0

CPE	Name	Operator	Version
cisco:unified_wireless_network_solution_software	cisco unified wireless network solution software	eq	7.0
cisco:unified_wireless_network_solution_software	cisco unified wireless network solution software	eq	7.0.98.0

References

www.cisco.com/en/US/docs/wireless/controller/release/notes/crn7.0.html

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for CVE-2010-2975

nvd1 prion1 cvelist1