Lucene search
CiscoCVE-2014-0686HistoryFeb 04, 2014 - 5:39 a.m.
CVE-2014-0686
2014-02-0405:39:08
CWE-264
cisco
web.nvd.nist.gov
28
cisco
unified communications manager
cve-2014-0686
privilege escalation
file permissions
security vulnerability
CVSS2
6
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:S/C:C/I:C/A:C
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
5.1%
Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and earlier allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul24908.
Affected configurations
Node
ciscounified_communications_managerRange≤9.1\(2.10000.28\)
ORciscounified_communications_managerMatch9.1\(1\)
ORciscounified_communications_managerMatch9.1\(2\)
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_communications_manager | * | cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 9.1(1) | cpe:2.3:a:cisco:unified_communications_manager:9.1\(1\):*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 9.1(2) | cpe:2.3:a:cisco:unified_communications_manager:9.1\(2\):*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2014-02-04 05:39:00
cvelist
cvelist
CVE-2014-0686
2014-02-04 02:00:00
nvd
nvd
CVE-2014-0686
2014-02-04 05:39:08
cisco
cisco
CVSS2
6
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:S/C:C/I:C/A:C
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2014-0686