Lucene search

CiscoCVE-2015-6375

HistoryNov 21, 2015 - 11:59 a.m.

CVE-2015-6375

2015-11-2111:59:02

CWE-200

cisco

web.nvd.nist.gov

cve-2015-6375

cisco

networking services

cns

ios

bug id

cscux18010

information security

vulnerability

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

Percentile

5.1%

JSON

The debug-logging (aka debug cns) feature in Cisco Networking Services (CNS) for IOS 15.2(2)E3 allows local users to obtain sensitive information by reading an unspecified file, aka Bug ID CSCux18010.

Affected configurations

Nvd

Node

ciscoiosMatch15.2\(2\)e3

VendorProductVersionCPE
ciscoios15.2(2)e3cpe:2.3:o:cisco:ios:15.2\(2\)e3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	15.2(2)e3	cpe:2.3:o:cisco:ios:15.2\(2\)e3:::::::*

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151120-ns

www.securityfocus.com/bid/77676

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2015-6375