CVE-2014-0742 - Vulnerability Details

Vendors	Products
Cisco	Unified Communications Manager

Link	Providers
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742
http://tools.cisco.com/security/center/viewAlert.x?alertId=33045
http://www.securitytracker.com/id/1029843

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-02-25T00:00:00", "descriptions": [{"lang": "en", "value": "The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2015-05-15T16:57:00", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045"}, {"name": "20140225 Cisco Unified Communications Manager CAPF CSR Arbitrary File Read/Write Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742"}, {"name": "1029843", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1029843"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2014-0742", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045", "refsource": "CONFIRM", "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045"}, {"name": "20140225 Cisco Unified Communications Manager CAPF CSR Arbitrary File Read/Write Vulnerability", "refsource": "CISCO", "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742"}, {"name": "1029843", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1029843"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T09:27:19.473Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045"}, {"name": "20140225 Cisco Unified Communications Manager CAPF CSR Arbitrary File Read/Write Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742"}, {"name": "1029843", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1029843"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2014-0742", "datePublished": "2014-02-27T01:00:00", "dateReserved": "2014-01-02T00:00:00", "dateUpdated": "2024-08-06T09:27:19.473Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2014-02-25T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2015-05-15T16:57:00 (string)

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=33045 (string)

}

1 : { »

name : 20140225 Cisco Unified Communications Manager CAPF CSR Arbitrary File Read/Write Vulnerability (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742 (string)

}

2 : { »

name : 1029843 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1029843 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : psirt@cisco.com (string)

ID : CVE-2014-0742 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : http://tools.cisco.com/security/center/viewAlert.x?alertId=33045 (string)

refsource : CONFIRM (string)

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=33045 (string)

}

1 : { »

name : 20140225 Cisco Unified Communications Manager CAPF CSR Arbitrary File Read/Write Vulnerability (string)

refsource : CISCO (string)

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742 (string)

}

2 : { »

name : 1029843 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1029843 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T09:27:19.473Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=33045 (string)

}

1 : { »

name : 20140225 Cisco Unified Communications Manager CAPF CSR Arbitrary File Read/Write Vulnerability (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

2 : x_transferred (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742 (string)

}

2 : { »

name : 1029843 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1029843 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

assignerShortName : cisco (string)

cveId : CVE-2014-0742 (string)

datePublished : 2014-02-27T01:00:00 (string)

dateReserved : 2014-01-02T00:00:00 (string)

dateUpdated : 2024-08-06T09:27:19.473Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "0F66EDBF-F735-4E44-B650-39FCE806535A", "versionEndIncluding": "10.0\\(1\\)", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:3.3\\(5\\):*:*:*:*:*:*:*", "matchCriteriaId": "9B9DA1F8-FA05-4380-8EFF-AF9FEF18FF2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:3.3\\(5\\)sr1:*:*:*:*:*:*:*", "matchCriteriaId": "65BB9155-89E5-4D54-AF1B-D5CA38392D5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:3.3\\(5\\)sr2a:*:*:*:*:*:*:*", "matchCriteriaId": "2A76CD6B-0C24-4F5F-B4BB-BA114150A7F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.1\\(3\\):*:*:*:*:*:*:*", "matchCriteriaId": "F9BD08CD-9169-4B1E-A6DE-B138E6AB533C", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.1\\(3\\)sr1:*:*:*:*:*:*:*", "matchCriteriaId": "DFFD96E3-B19F-41B7-86FD-DBFD41382C28", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.1\\(3\\)sr2:*:*:*:*:*:*:*", "matchCriteriaId": "0E9BF838-87A2-43B8-975B-524D7F954BF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.1\\(3\\)sr3:*:*:*:*:*:*:*", "matchCriteriaId": "9600EA23-5428-4312-A38E-480E3C3228BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.1\\(3\\)sr4:*:*:*:*:*:*:*", "matchCriteriaId": "57F5547E-F9C8-4F9C-96A1-563A66EE8D48", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "E6C20851-DC17-4E89-A6C1-D1B52D47608F", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "BC830649-C0D4-4FFC-8701-80FB4A706F58", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "935D2815-7146-4125-BDBE-BFAA62A88EC9", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "6BF54827-75E6-4BA0-84F0-0EC0E24A4A73", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr1:*:*:*:*:*:*:*", "matchCriteriaId": "6C8628E7-D3C8-4212-B0A5-6B5AC14D6101", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2:*:*:*:*:*:*:*", "matchCriteriaId": "19432E5E-EA68-4B7A-8B99-DEBACBC3F160", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2b:*:*:*:*:*:*:*", "matchCriteriaId": "ABE4CD8E-F27C-4F96-B955-FC1E71B5D55B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:4.3:*:*:*:*:*:*:*", "matchCriteriaId": "577571D6-AC59-4A43-B9A5-7B6FC6D2046C", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_communications_manager:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "725D3E7D-6EF9-4C13-8B30-39ED49BBC8E3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464."}, {"lang": "es", "value": "La implementaci\u00f3n Certificate Authority Proxy Function (CAPF) CLI en la funcionalidad de gesti\u00f3n CSR en Cisco Unified Communications Manager (Unified CM) 10.0(1) y anteriores permite a usuarios locales leer o modificar archivos arbitrarios a trav\u00e9s de vectores no especificados, tambi\u00e9n conocido como Bug ID CSCum95464."}], "id": "CVE-2014-0742", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 6.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:S/C:C/I:C/A:N", "version": "2.0"}, "exploitabilityScore": 3.1, "impactScore": 9.2, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-02-27T01:55:03.350", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742"}, {"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045"}, {"source": "psirt@cisco.com", "url": "http://www.securitytracker.com/id/1029843"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1029843"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 0F66EDBF-F735-4E44-B650-39FCE806535A (string)

versionEndIncluding : 10.0\(1\) (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:3.3\(5\):*:*:*:*:*:*:* (string)

matchCriteriaId : 9B9DA1F8-FA05-4380-8EFF-AF9FEF18FF2E (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:3.3\(5\)sr1:*:*:*:*:*:*:* (string)

matchCriteriaId : 65BB9155-89E5-4D54-AF1B-D5CA38392D5D (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:3.3\(5\)sr2a:*:*:*:*:*:*:* (string)

matchCriteriaId : 2A76CD6B-0C24-4F5F-B4BB-BA114150A7F1 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\):*:*:*:*:*:*:* (string)

matchCriteriaId : F9BD08CD-9169-4B1E-A6DE-B138E6AB533C (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr1:*:*:*:*:*:*:* (string)

matchCriteriaId : DFFD96E3-B19F-41B7-86FD-DBFD41382C28 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr2:*:*:*:*:*:*:* (string)

matchCriteriaId : 0E9BF838-87A2-43B8-975B-524D7F954BF5 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr3:*:*:*:*:*:*:* (string)

matchCriteriaId : 9600EA23-5428-4312-A38E-480E3C3228BF (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.1\(3\)sr4:*:*:*:*:*:*:* (string)

matchCriteriaId : 57F5547E-F9C8-4F9C-96A1-563A66EE8D48 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : E6C20851-DC17-4E89-A6C1-D1B52D47608F (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : BC830649-C0D4-4FFC-8701-80FB4A706F58 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 935D2815-7146-4125-BDBE-BFAA62A88EC9 (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.2.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 6BF54827-75E6-4BA0-84F0-0EC0E24A4A73 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr1:*:*:*:*:*:*:* (string)

matchCriteriaId : 6C8628E7-D3C8-4212-B0A5-6B5AC14D6101 (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2:*:*:*:*:*:*:* (string)

matchCriteriaId : 19432E5E-EA68-4B7A-8B99-DEBACBC3F160 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.2.3sr2b:*:*:*:*:*:*:* (string)

matchCriteriaId : ABE4CD8E-F27C-4F96-B955-FC1E71B5D55B (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:4.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 577571D6-AC59-4A43-B9A5-7B6FC6D2046C (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:a:cisco:unified_communications_manager:10.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 725D3E7D-6EF9-4C13-8B30-39ED49BBC8E3 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464. (string)

}

1 : { »

lang : es (string)

value : La implementación Certificate Authority Proxy Function (CAPF) CLI en la funcionalidad de gestión CSR en Cisco Unified Communications Manager (Unified CM) 10.0(1) y anteriores permite a usuarios locales leer o modificar archivos arbitrarios a través de vectores no especificados, también conocido como Bug ID CSCum95464. (string)

}

]

id : CVE-2014-0742 (string)

lastModified : 2025-04-12T10:46:40.837 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : LOCAL (string)

authentication : SINGLE (string)

availabilityImpact : NONE (string)

baseScore : 6.2 (number)

confidentialityImpact : COMPLETE (string)

integrityImpact : COMPLETE (string)

vectorString : AV:L/AC:L/Au:S/C:C/I:C/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 3.1 (number)

impactScore : 9.2 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2014-02-27T01:55:03.350 (string)

references : [ »

0 : { »

source : psirt@cisco.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742 (string)

}

1 : { »

source : psirt@cisco.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=33045 (string)

}

2 : { »

source : psirt@cisco.com (string)

url : http://www.securitytracker.com/id/1029843 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742 (string)

}

4 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=33045 (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securitytracker.com/id/1029843 (string)

}

]

sourceIdentifier : psirt@cisco.com (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-20 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object