Lucene search

[email protected]CVE-2015-0773

HistoryJun 12, 2015 - 10:59 a.m.

CVE-2015-0773

2015-06-1210:59:00

CWE-264

[email protected]

web.nvd.nist.gov

cisco

firesight

system software

bug id

cscut67078

remote authenticated users

vpn deletion request

security vulnerability

cve-2015-0773

nvd

6.5 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

43.9%

JSON

Cisco FireSIGHT System Software 5.3.1.3 and 6.0.0 allows remote authenticated users to delete an arbitrary user’s dashboard via a modified VPN deletion request in a management session, aka Bug ID CSCut67078.

CPENameOperatorVersion
cisco:firesight_system_softwarecisco firesight system softwareeq5.3.1.1
cisco:firesight_system_softwarecisco firesight system softwareeq6.0.0

CPE	Name	Operator	Version
cisco:firesight_system_software	cisco firesight system software	eq	5.3.1.1
cisco:firesight_system_software	cisco firesight system software	eq	6.0.0

References

tools.cisco.com/security/center/viewAlert.x?alertId=39256

www.securitytracker.com/id/1032542

6.5 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

43.9%

JSON

Related for CVE-2015-0773

cvelist1 cisco1 prion1