CVE-2014-7989

2014-11-0711:55:03

CWE-20

[email protected]

web.nvd.nist.gov

cisco

unified computing system

vulnerability

cve-2014-7989

bug id cscuq38176

nvd

6.7 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.1%

JSON

Cisco Unified Computing System on B-Series blade servers allows local users to gain shell privileges via a crafted (1) ping6 or (2) traceroute6 command, aka Bug ID CSCuq38176.

Affected configurations

NVD

Node

ciscob200_m3Match-

ciscob200_m4Match-

ciscob22_m3Match-

ciscob230_m2Match-

ciscob260_m4Match-

ciscob420_m3Match-

ciscob440_m2Match-

ciscob460_m4Match-

CPENameOperatorVersion
cisco:b200_m3cisco b200 m3eq-
cisco:b200_m4cisco b200 m4eq-
cisco:b22_m3cisco b22 m3eq-
cisco:b230_m2cisco b230 m2eq-
cisco:b260_m4cisco b260 m4eq-
cisco:b420_m3cisco b420 m3eq-
cisco:b440_m2cisco b440 m2eq-
cisco:b460_m4cisco b460 m4eq-

CPE	Name	Operator	Version
cisco:b200_m3	cisco b200 m3	eq	-
cisco:b200_m4	cisco b200 m4	eq	-
cisco:b22_m3	cisco b22 m3	eq	-
cisco:b230_m2	cisco b230 m2	eq	-
cisco:b260_m4	cisco b260 m4	eq	-
cisco:b420_m3	cisco b420 m3	eq	-
cisco:b440_m2	cisco b440 m2	eq	-
cisco:b460_m4	cisco b460 m4	eq	-