Lucene search
CiscoCVE-2015-4244HistoryJul 10, 2015 - 10:59 a.m.
CVE-2015-4244
2015-07-1010:59:00
CWE-78
cisco
web.nvd.nist.gov
30
cve-2015-4244
cisco
asr 5000
asr 5500
linux commands
bug id
cscuu75278
nvd
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0
Percentile
5.2%
The boot implementation on Cisco ASR 5000 and 5500 devices with software 14.0 allows local users to execute arbitrary Linux commands by leveraging administrative privileges for storage of these commands in a Compact Flash (CF) file, aka Bug ID CSCuu75278.
Affected configurations
Node
ciscoasr_5000_series_softwareMatch14.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | asr_5000_series_software | 14.0 | cpe:2.3:a:cisco:asr_5000_series_software:14.0:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2015-07-10 10:59:00
cvelist
cvelist
CVE-2015-4244
2015-07-10 10:00:00
cisco
cisco
Cisco ASR 5000 Series Software Local Command Injection Vulnerability
2015-07-09 20:51:51
nvd
nvd
CVE-2015-4244
2015-07-10 10:59:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0
Percentile
5.2%
Related for CVE-2015-4244