Vulnerability CVE-2015-0755
Published: 2015-05-29

Description:
The Posture module for Cisco Identity Services Engine (ISE), as distributed in Cisco AnyConnect Secure Mobility Client 4.0(64), allows local users to gain privileges via unspecified commands, aka Bug ID CSCut05797.

CVSS2 => (AV:L/AC:L/Au:S/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
10/10
3.1/10
Exploit range
Attack complexity
Authentication
Local
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Cisco -> Anyconnect secure mobility client 

 References:
http://tools.cisco.com/security/center/viewAlert.x?alertId=39018
http://www.securitytracker.com/id/1032424
Copyright 2024, cxsecurity.com

 

Back to Top