Lucene search

[email protected]NVD:CVE-2012-0691

HistoryOct 02, 2012 - 9:55 p.m.

CVE-2012-0691

2012-10-0221:55:00

CWE-264

[email protected]

web.nvd.nist.gov

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

CA License (aka CA Licensing) before 1.90.03 does not properly restrict system commands, which allows local users to gain privileges via unspecified vectors.

Affected configurations

NVD

Node

broadcomlicense_softwareRange≤1.90.02

broadcomlicense_softwareMatch0.1.0.15

broadcomlicense_softwareMatch1.5.3

broadcomlicense_softwareMatch1.8.0.110

broadcomlicense_softwareMatch1.8.0.114

broadcomlicense_softwareMatch1.9.1.105

broadcomlicense_softwareMatch1.52

broadcomlicense_softwareMatch1.60.3

broadcomlicense_softwareMatch1.61.8

broadcomlicense_softwareMatch1.61.9

broadcomlicense_softwareMatch1.70.1.101

References

archives.neohapsis.com/archives/bugtraq/2012-10/0011.html

www.securitytracker.com/id?1027588

support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7B79CE87E4-7A35-48A3-99BA-5A0DBEDECA94%7D

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2012-0691

cve1 prion1 cvelist1 securityvulns2