Lucene search

K
nvd[email protected]NVD:CVE-2015-4186
HistoryJun 17, 2015 - 10:59 a.m.

CVE-2015-4186

2015-06-1710:59:04
CWE-78
web.nvd.nist.gov
1

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.9

Confidence

Low

EPSS

0

Percentile

5.2%

The diagnostics subsystem in the administrative web interface on Cisco Virtualization Experience (aka VXC) Client 6215 devices with firmware 11.2(27.4) allows local users to gain privileges for OS command execution via a crafted option value, aka Bug ID CSCug54412.

Affected configurations

Nvd
Node
ciscovirtualization_experience_client_6000_series_firmwareMatch11.2\(27.4\)
VendorProductVersionCPE
ciscovirtualization_experience_client_6000_series_firmware11.2(27.4)cpe:2.3:o:cisco:virtualization_experience_client_6000_series_firmware:11.2\(27.4\):*:*:*:*:*:*:*

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.9

Confidence

Low

EPSS

0

Percentile

5.2%

Related for NVD:CVE-2015-4186