CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:S/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
5.1%
Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and earlier allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul24908.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_communications_manager | * | cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 9.1(1) | cpe:2.3:a:cisco:unified_communications_manager:9.1\(1\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 9.1(2) | cpe:2.3:a:cisco:unified_communications_manager:9.1\(2\):*:*:*:*:*:*:* |