Lucene search
HistoryDec 24, 2014 - 12:59 a.m.
CVE-2014-7995
cisco
meraki
cve-2014-7995
firmware
security vulnerability
shell access
physical security
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
12.8%
Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24 allow physically proximate attackers to obtain shell access by opening a device’s case and connecting a cable to a serial port, aka Cisco-Meraki defect ID 00302077.
Affected configurations
Node
ciscomeraki_mx_firmwareRange≤2014-09-24
ciscomeraki_mxMatch-
Node
ciscomeraki_ms_firmwareRange≤2014-09-24
ciscomeraki_msMatch-
Node
ciscomeraki_mr_firmwareRange≤2014-09-24
ciscomeraki_mrMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco:meraki_mx_firmware | cisco meraki mx firmware | le | 2014-09-24 |
| cisco:meraki_mx | cisco meraki mx | eq | - |
Related
prion
prion
Design/Logic Flaw
2014-12-24 00:59:00
cvelist
cvelist
CVE-2014-7995
2014-12-24 00:00:00
nvd
nvd
CVE-2014-7995
2014-12-24 00:59:02
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
12.8%
Related for CVE-2014-7995