Lucene search

K

CiscoCVELIST:CVE-2014-7990

HistoryNov 07, 2014 - 11:00 a.m.

CVE-2014-7990

2014-11-0711:00:00

cisco

www.cve.org

5

AI Score

6.4

Confidence

Low

EPSS

0

Percentile

5.1%

Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the “request system shell” challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur09815.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7990

tools.cisco.com/security/center/viewAlert.x?alertId=36351

www.securityfocus.com/bid/70968

www.securitytracker.com/id/1031179

exchange.xforce.ibmcloud.com/vulnerabilities/98529

AI Score

6.4

Confidence

Low

EPSS

0

Percentile

5.1%

Related for CVELIST:CVE-2014-7990

prion1 cve1 cisco1 nvd1