Lucene search
CiscoCVE-2013-3408HistoryJul 10, 2013 - 9:55 p.m.
CVE-2013-3408
2013-07-1021:55:00
CWE-264
cisco
web.nvd.nist.gov
28
firmware
cisco
virtualization
permissions
local users
privileges
bug id
cscuc31764
cve-2013-3408
CVSS2
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0.001
Percentile
25.6%
The firmware on Cisco Virtualization Experience Client 6000 devices sets incorrect operating-system permissions, which allows local users to gain privileges via an unspecified sequence of commands, aka Bug ID CSCuc31764.
Affected configurations
Node
ciscovirtualization_experience_client_6000_series_firmwareMatch-
ciscovirtualization_experience_client_6000Match-
ORciscovirtualization_experience_client_6215Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | virtualization_experience_client_6000_series_firmware | - | cpe:/o:cisco:virtualization_experience_client_6000_series_firmware:-::: |
| cisco | virtualization_experience_client_6000 | - | cpe:/h:cisco:virtualization_experience_client_6000:-::: |
| cisco | virtualization_experience_client_6215 | - | cpe:/h:cisco:virtualization_experience_client_6215:-::: |
Related
cisco
cisco
Cisco Virtualization Experience Client Privilege Escalation Vulnerability
2013-07-10 13:57:18
cvelist
cvelist
CVE-2013-3408
2013-07-10 21:00:00
nvd
nvd
CVE-2013-3408
2013-07-10 21:55:00
prion
prion
Command injection
2013-07-10 21:55:00
CVSS2
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0.001
Percentile
25.6%
Related for CVE-2013-3408