Lucene search
CiscoCVE-2015-6296HistorySep 18, 2015 - 10:59 p.m.
CVE-2015-6296
2015-09-1822:59:03
CWE-264
cisco
web.nvd.nist.gov
25
cisco
prime network registrar
cpnr
cve-2015-6296
bug id cscuw21825
security vulnerability
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.1%
Cisco Prime Network Registrar (CPNR) 8.1(3.3), 8.2(3), and 8.3(2) has a default account, which allows local users to obtain root access by leveraging knowledge of the credentials, aka Bug ID CSCuw21825.
Affected configurations
Node
ciscoprime_network_registrarMatch8.1.3.3
ORciscoprime_network_registrarMatch8.2.3
ORciscoprime_network_registrarMatch8.3.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | prime_network_registrar | 8.1.3.3 | cpe:2.3:a:cisco:prime_network_registrar:8.1.3.3:*:*:*:*:*:*:* |
| cisco | prime_network_registrar | 8.2.3 | cpe:2.3:a:cisco:prime_network_registrar:8.2.3:*:*:*:*:*:*:* |
| cisco | prime_network_registrar | 8.3.2 | cpe:2.3:a:cisco:prime_network_registrar:8.3.2:*:*:*:*:*:*:* |
Related
prion
prion
Default credentials
2015-09-18 22:59:00
nvd
nvd
CVE-2015-6296
2015-09-18 22:59:03
cvelist
cvelist
CVE-2015-6296
2015-09-18 22:00:00
cisco
cisco
Cisco Prime Network Registrar Privilege Escalation Vulnerability
2015-09-17 21:02:42
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2015-6296