Lucene search

[email protected]NVD:CVE-2013-1240

HistoryMay 04, 2013 - 3:24 a.m.

CVE-2013-1240

2013-05-0403:24:41

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:C/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

Percentile

5.1%

JSON

The command-line interface in Cisco Unified Communications Manager (CUCM) does not properly validate input, which allows local users to read arbitrary files via unspecified vectors, aka Bug ID CSCue25770.

Affected configurations

Nvd

Node

ciscounified_communications_manager

VendorProductVersionCPE
ciscounified_communications_manager*cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	unified_communications_manager	*	cpe:2.3:a:cisco:unified_communications_manager::::::::

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1240

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:C/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2013-1240

prion1 cisco1 cvelist1 cve1