| |
Vulnerability CVE-2013-5556
Published: 2013-11-17 Modified: 2013-11-19
Description: |
The license-installation module on the Cisco Nexus 1000V switch 4.2(1)SV1(5.2b) and earlier for VMware vSphere, Cisco Nexus 1000V switch 5.2(1)SM1(5.1) for Microsoft Hyper-V, and Cisco Virtual Security Gateway 4.2(1)VSG1(1) for Nexus 1000V switches allows local users to gain privileges and execute arbitrary commands via crafted "install all iso" arguments, aka Bug ID CSCui21340. |
CVSS2 => (AV:L/AC:L/Au:S/C:C/I:C/A:C)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
6.8/10 |
10/10 |
3.1/10 |
Exploit range |
Attack complexity |
Authentication |
Local |
Low |
Single time |
Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
Complete |
Complete |
References: |
http://tools.cisco.com/security/center/viewAlert.x?alertId=31774
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5556
|
|
|
closedb();
?>
Copyright 2024, cxsecurity.com
|
|
|