Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveCiscoCVE-2015-0691
HistoryApr 17, 2015 - 1:59 a.m.

CVE-2015-0691

2015-04-1701:59:25
CWE-264
CWE-78
cisco
web.nvd.nist.gov
32
cisco
jar file
cache cleaner
cisco secure desktop
cscup83001
remote attackers
arbitrary commands
crafted web site
cve-2015-0691

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.002

Percentile

59.8%

JSON

A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows remote attackers to execute arbitrary commands via a crafted web site, aka Bug ID CSCup83001.

Affected configurations

Nvd
Node
ciscosecure_desktopMatch3.0_base
OR
ciscosecure_desktopMatch3.1.0.31
OR
ciscosecure_desktopMatch3.1.1
OR
ciscosecure_desktopMatch3.1.1.45
OR
ciscosecure_desktopMatch3.1_base
OR
ciscosecure_desktopMatch3.2.0.136
OR
ciscosecure_desktopMatch3.2.1.103
OR
ciscosecure_desktopMatch3.2.1.126
OR
ciscosecure_desktopMatch3.2_base
OR
ciscosecure_desktopMatch3.3.0.118
OR
ciscosecure_desktopMatch3.3.0.151
OR
ciscosecure_desktopMatch3.3_base
OR
ciscosecure_desktopMatch3.4.0373
OR
ciscosecure_desktopMatch3.4.1108
OR
ciscosecure_desktopMatch3.4.2048
OR
ciscosecure_desktopMatch3.4_base
OR
ciscosecure_desktopMatch3.5.841
OR
ciscosecure_desktopMatch3.5.1077
OR
ciscosecure_desktopMatch3.5.2001
OR
ciscosecure_desktopMatch3.5.2003
OR
ciscosecure_desktopMatch3.5.2008
OR
ciscosecure_desktopMatch3.5_base
OR
ciscosecure_desktopMatch3.6.181
OR
ciscosecure_desktopMatch3.6.185
OR
ciscosecure_desktopMatch3.6.1001
OR
ciscosecure_desktopMatch3.6.2002
OR
ciscosecure_desktopMatch3.6.3002
OR
ciscosecure_desktopMatch3.6.4021
OR
ciscosecure_desktopMatch3.6.5005
OR
ciscosecure_desktopMatch3.6.6020
OR
ciscosecure_desktopMatch3.6.6104
OR
ciscosecure_desktopMatch3.6.6203
OR
ciscosecure_desktopMatch3.6.6210
OR
ciscosecure_desktopMatch3.6.6228
OR
ciscosecure_desktopMatch3.6.6234
OR
ciscosecure_desktopMatch3.6.6249
OR
ciscosecure_desktopMatch3.6_base
VendorProductVersionCPE
ciscosecure_desktop3.0_basecpe:2.3:a:cisco:secure_desktop:3.0_base:*:*:*:*:*:*:*
ciscosecure_desktop3.1.0.31cpe:2.3:a:cisco:secure_desktop:3.1.0.31:*:*:*:*:*:*:*
ciscosecure_desktop3.1.1cpe:2.3:a:cisco:secure_desktop:3.1.1:*:*:*:*:*:*:*
ciscosecure_desktop3.1.1.45cpe:2.3:a:cisco:secure_desktop:3.1.1.45:*:*:*:*:*:*:*
ciscosecure_desktop3.1_basecpe:2.3:a:cisco:secure_desktop:3.1_base:*:*:*:*:*:*:*
ciscosecure_desktop3.2.0.136cpe:2.3:a:cisco:secure_desktop:3.2.0.136:*:*:*:*:*:*:*
ciscosecure_desktop3.2.1.103cpe:2.3:a:cisco:secure_desktop:3.2.1.103:*:*:*:*:*:*:*
ciscosecure_desktop3.2.1.126cpe:2.3:a:cisco:secure_desktop:3.2.1.126:*:*:*:*:*:*:*
ciscosecure_desktop3.2_basecpe:2.3:a:cisco:secure_desktop:3.2_base:*:*:*:*:*:*:*
ciscosecure_desktop3.3.0.118cpe:2.3:a:cisco:secure_desktop:3.3.0.118:*:*:*:*:*:*:*
Rows per page:
1-10 of 371

Related

securityvulns 1
nvd 1
cvelist 1
cisco 1
prion 1
securityvulns
securityvulns
Cisco Secure Desktop code execution
2015-04-16 00:00:00
nvd
nvd
CVE-2015-0691
2015-04-17 01:59:25
cvelist
cvelist
CVE-2015-0691
2015-04-17 01:00:00
cisco
cisco
Cisco Secure Desktop Cache Cleaner Command Execution Vulnerability
2015-04-15 16:00:00
prion
prion
Command injection
2015-04-17 01:59:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.002

Percentile

59.8%

JSON
Related for CVE-2015-0691
securityvulns1nvd1cvelist1cisco1prion1