exploitDog

CVE-2012-4106

Опубликовано: 13 окт. 2013

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

The fabric-interconnect component in Cisco Unified Computing System (UCS) uses the same privilege level for execution of every script, which allows local users to gain privileges and execute arbitrary commands via an unspecified script-execution approach, aka Bug ID CSCtq86477.

Ссылки

http://osvdb.org/98354
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4106
Vendor Advisory
http://www.securityfocus.com/bid/62981
Third Party Advisory
VDB Entry
http://osvdb.org/98354
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4106
Vendor Advisory
http://www.securityfocus.com/bid/62981
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:cisco:unified_computing_system:-:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00112

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-c72v-8q4h-3989

github

больше 3 лет назад

The fabric-interconnect component in Cisco Unified Computing System (UCS) uses the same privilege level for execution of every script, which allows local users to gain privileges and execute arbitrary commands via an unspecified script-execution approach, aka Bug ID CSCtq86477.

EPSS

Процентиль: 30%

0.00112

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-264