Lucene search

[email protected]NVD:CVE-1999-1126

HistoryDec 31, 1999 - 5:00 a.m.

CVE-1999-1126

1999-12-3105:00:00

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that allow local users to obtain sensitive configuration information including usernames, passwords, and SNMP community strings, from (1) swim_swd.log, (2) swim_debug.log, (3) dbi_debug.log, and (4) temporary files whose names begin with “DPR_”.

Affected configurations

NVD

Node

ciscoresource_managerRange≤1.1

References

ciac.llnl.gov/ciac/bulletins/i-086.shtml

www.cisco.com/warp/public/770/crmtmp-pub.shtml

exchange.xforce.ibmcloud.com/vulnerabilities/1575

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-1999-1126

cvelist1 cve1