Lucene search

[email protected]CVE-2015-0767

HistoryJun 07, 2015 - 6:59 p.m.

CVE-2015-0767

2015-06-0718:59:04

CWE-264

[email protected]

web.nvd.nist.gov

cve-2015-0767

cisco

edge 300 software

local users

root privileges

bug id cscur18132

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Cisco Edge 300 software 1.0 and 1.1 on Edge 340 devices allows local users to obtain root privileges via unspecified commands, aka Bug ID CSCur18132.

Affected configurations

NVD

Node

ciscoedge_340_firmwareMatch1.0.0

ciscoedge_340_firmwareMatch1.1.0

AND

ciscoedge_340

CPENameOperatorVersion
cisco:edge_340_firmwarecisco edge 340 firmwareeq1.0.0
cisco:edge_340_firmwarecisco edge 340 firmwareeq1.1.0

CPE	Name	Operator	Version
cisco:edge_340_firmware	cisco edge 340 firmware	eq	1.0.0
cisco:edge_340_firmware	cisco edge 340 firmware	eq	1.1.0

References

tools.cisco.com/security/center/viewAlert.x?alertId=39187

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2015-0767

prion1 nvd1 cisco1 cvelist1