Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveCiscoCVE-2013-3403
HistoryJul 18, 2013 - 12:48 p.m.

CVE-2013-3403

2013-07-1812:48:56
cisco
web.nvd.nist.gov
25
cisco
unified communications manager
cucm
vulnerabilities
privilege escalation
bug id
cscuh73454
nvd

CVSS2

6.8

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

37.7%

JSON

Multiple untrusted search path vulnerabilities in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allow local users to gain privileges by leveraging unspecified file-permission and environment-variable issues for privileged programs, aka Bug ID CSCuh73454.

Affected configurations

Nvd
Node
ciscounified_communications_managerMatch7.1\(2a\)
OR
ciscounified_communications_managerMatch7.1\(2a\)su1
OR
ciscounified_communications_managerMatch7.1\(2b\)
OR
ciscounified_communications_managerMatch7.1\(2b\)su1
OR
ciscounified_communications_managerMatch7.1\(3\)
OR
ciscounified_communications_managerMatch7.1\(3a\)
OR
ciscounified_communications_managerMatch7.1\(3a\)su1
OR
ciscounified_communications_managerMatch7.1\(3a\)su1a
OR
ciscounified_communications_managerMatch7.1\(3b\)
OR
ciscounified_communications_managerMatch7.1\(3b\)su1
OR
ciscounified_communications_managerMatch7.1\(3b\)su2
OR
ciscounified_communications_managerMatch7.1\(5\)
OR
ciscounified_communications_managerMatch7.1\(5\)su1
OR
ciscounified_communications_managerMatch7.1\(5\)su1a
OR
ciscounified_communications_managerMatch7.1\(5a\)
OR
ciscounified_communications_managerMatch7.1\(5b\)
OR
ciscounified_communications_managerMatch7.1\(5b\)su1
OR
ciscounified_communications_managerMatch7.1\(5b\)su1a
OR
ciscounified_communications_managerMatch7.1\(5b\)su2
OR
ciscounified_communications_managerMatch7.1\(5b\)su3
OR
ciscounified_communications_managerMatch7.1\(5b\)su4
OR
ciscounified_communications_managerMatch7.1\(5b\)su5
OR
ciscounified_communications_managerMatch7.1\(5b\)su6
Node
ciscounified_communications_managerMatch8.0
OR
ciscounified_communications_managerMatch8.0\(1\)
OR
ciscounified_communications_managerMatch8.0\(2\)
OR
ciscounified_communications_managerMatch8.0\(2a\)
OR
ciscounified_communications_managerMatch8.0\(2b\)
OR
ciscounified_communications_managerMatch8.0\(2c\)
OR
ciscounified_communications_managerMatch8.0\(2c\)su1
OR
ciscounified_communications_managerMatch8.0\(3\)
OR
ciscounified_communications_managerMatch8.0\(3a\)
OR
ciscounified_communications_managerMatch8.0\(3a\)su1
OR
ciscounified_communications_managerMatch8.0\(3a\)su2
OR
ciscounified_communications_managerMatch8.0\(3a\)su3
Node
ciscounified_communications_managerMatch8.5
OR
ciscounified_communications_managerMatch8.5\(1\)
OR
ciscounified_communications_managerMatch8.5\(1\)su1
OR
ciscounified_communications_managerMatch8.5\(1\)su2
OR
ciscounified_communications_managerMatch8.5\(1\)su3
OR
ciscounified_communications_managerMatch8.5\(1\)su4
OR
ciscounified_communications_managerMatch8.5\(1\)su5
Node
ciscounified_communications_managerMatch8.6
OR
ciscounified_communications_managerMatch8.6\(1\)
OR
ciscounified_communications_managerMatch8.6\(1a\)
OR
ciscounified_communications_managerMatch8.6\(2\)
OR
ciscounified_communications_managerMatch8.6\(2a\)
OR
ciscounified_communications_managerMatch8.6\(2a\)su1
OR
ciscounified_communications_managerMatch8.6\(2a\)su2
OR
ciscounified_communications_managerMatch8.6\(2a\)su3
OR
ciscounified_communications_managerMatch8.6\(3\)
OR
ciscounified_communications_managerMatch8.6\(4\)
Node
ciscounified_communications_managerMatch9.0\(1\)
OR
ciscounified_communications_managerMatch9.1\(1\)
OR
ciscounified_communications_managerMatch9.1\(1a\)
OR
ciscounified_communications_managerMatch9.1.1\(a\)
VendorProductVersionCPE
ciscounified_communications_manager7.1%282b%29su1cpe:/a:cisco:unified_communications_manager:7.1%282b%29su1:::
ciscounified_communications_manager7.1%282a%29su1cpe:/a:cisco:unified_communications_manager:7.1%282a%29su1:::
ciscounified_communications_manager7.1%285b%29su6cpe:/a:cisco:unified_communications_manager:7.1%285b%29su6:::
ciscounified_communications_manager7.1%283a%29cpe:/a:cisco:unified_communications_manager:7.1%283a%29:::
ciscounified_communications_manager7.1%282b%29cpe:/a:cisco:unified_communications_manager:7.1%282b%29:::
ciscounified_communications_manager7.1%285%29su1acpe:/a:cisco:unified_communications_manager:7.1%285%29su1a:::
ciscounified_communications_manager7.1%285b%29su2cpe:/a:cisco:unified_communications_manager:7.1%285b%29su2:::
ciscounified_communications_manager7.1%283a%29su1cpe:/a:cisco:unified_communications_manager:7.1%283a%29su1:::
ciscounified_communications_manager7.1%283a%29su1acpe:/a:cisco:unified_communications_manager:7.1%283a%29su1a:::
ciscounified_communications_manager7.1%285%29cpe:/a:cisco:unified_communications_manager:7.1%285%29:::
Rows per page:
1-10 of 231

Related

cvelist 1
prion 1
nvd 1
cisco 2
securityvulns 1
cvelist
cvelist
CVE-2013-3403
2013-07-18 00:00:00
prion
prion
Design/Logic Flaw
2013-07-18 12:48:00
nvd
nvd
CVE-2013-3403
2013-07-18 12:48:56
cisco
cisco
Cisco Unified Communications Manager Privilege Escalation Vulnerability
2013-07-17 16:17:40
Multiple Vulnerabilities in Cisco Unified Communications Manager
2013-07-17 16:00:00
securityvulns
securityvulns
Cisco Unified Communications Manager multiple security vulnerabilities
2013-07-19 00:00:00

CVSS2

6.8

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

37.7%

JSON
Related for CVE-2013-3403
cvelist1prion1nvd1cisco2securityvulns1