CVE-2015-0767

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2015-0767
Cisco Edge 300 software 1.0 and 1.1 on Edge 340 devices allows local users to obtain root privileges via unspecified commands, aka Bug ID CSCur18132.

7.2 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://tools.cisco.com/security/center/viewAlert.x?alertId=39187 Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=39187 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:cisco:edge_340_firmware:1.0.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:edge_340_firmware:1.1.0:*:*:*:*:*:*:*
cpe:2.3:h:cisco:edge_340:*:*:*:*:*:*:*:*
History

21 Nov 2024, 02:23

Type Values Removed Values Added
References () http://tools.cisco.com/security/center/viewAlert.x?alertId=39187 - Vendor Advisory () http://tools.cisco.com/security/center/viewAlert.x?alertId=39187 - Vendor Advisory
Information

Published : 2015-06-07 18:59

Updated : 2025-04-12 10:46

NVD link : CVE-2015-0767

Mitre link : CVE-2015-0767

CVE.ORG link : CVE-2015-0767

JSON object : View

Products Affected

cisco

  • edge_340_firmware
  • edge_340
CWE
CWE-264

Permissions, Privileges, and Access Controls