CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Untrusted search path vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allows local users to gain privileges by leveraging unspecified file-permission and environment-variable issues for privileged programs, aka Bug ID CSCui02276.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_communications_manager | 7.1(2a) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(2a)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(2b) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(2b)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3a) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3a\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3a)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3a\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3a)su1a | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3a\)su1a:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3b) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3b\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3b)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3b\)su1:*:*:*:*:*:*:* |