Lucene search

[email protected]CVE-2015-0584

HistoryFeb 20, 2015 - 2:59 a.m.

CVE-2015-0584

2015-02-2002:59:00

CWE-20

[email protected]

web.nvd.nist.gov

cisco

desktop collaboration experience

dx650

image-upgrade

vulnerability

cve-2015-0584

nvd

cscus38947

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The image-upgrade implementation on Cisco Desktop Collaboration Experience (aka Collaboration Desk Experience or DX) DX650 endpoints allows local users to execute arbitrary OS commands via an unspecified parameter, aka Bug ID CSCus38947.

Affected configurations

NVD

Node

ciscodesktop_collaboration_experience_dx650Match-

CPENameOperatorVersion
cisco:desktop_collaboration_experience_dx650cisco desktop collaboration experience dx650eq-

CPE	Name	Operator	Version
cisco:desktop_collaboration_experience_dx650	cisco desktop collaboration experience dx650	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0584

www.securityfocus.com/bid/72696

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2015-0584

prion1 cvelist1 nvd1 cisco1