Lucene search

[email protected]NVD:CVE-2015-0761

HistoryJun 04, 2015 - 10:59 a.m.

CVE-2015-0761

2015-06-0410:59:01

CWE-264

[email protected]

web.nvd.nist.gov

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Cisco AnyConnect Secure Mobility Client before 3.1(8009) and 4.x before 4.0(2052) on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileges via crafted vpnagent options, aka Bug ID CSCus86790.

Affected configurations

NVD

Node

ciscoanyconnect_secure_mobility_clientRange≤3.1\(.07021\)

ciscoanyconnect_secure_mobility_clientMatch4.0\(.00048\)

ciscoanyconnect_secure_mobility_clientMatch4.0\(.00051\)

References

tools.cisco.com/security/center/viewAlert.x?alertId=39158

www.securityfocus.com/bid/74954

www.securitytracker.com/id/1032472

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2015-0761

cvelist1 cve1 prion1 cisco1