CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:S/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
64.8%
The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(25) and 4.x before 4.1(13), when multiple-context mode is enabled, allows local users to read or modify any context’s configuration via unspecified commands, aka Bug ID CSCue46080.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | firewall_services_module_software | 3.1 | cpe:2.3:a:cisco:firewall_services_module_software:3.1:*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(2) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(2\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(3) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(3\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(4) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(4\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(5) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(5\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(6) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(6\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(7) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(7\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(8) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(8\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(9) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(9\):*:*:*:*:*:*:* |
cisco | firewall_services_module_software | 3.1(10) | cpe:2.3:a:cisco:firewall_services_module_software:3.1\(10\):*:*:*:*:*:*:* |