9 - cisco-sa-20080521-cvp

Executive Summary

Summary
Title	Cisco Voice Portal Privilege Escalation Vulnerability

Informations
Name	cisco-sa-20080521-cvp	First vendor Publication	2008-03-26
Vendor	Cisco	Last vendor Modification	2008-05-21
Severity (Vendor)	N/A	Revision	1.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:C/I:C/A:C)
Cvss Base Score	9	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	8	Authentication	Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

A vulnerability exists in the Cisco Unified Customer Voice Portal (CVP) where an authenticated user can create, modify, or delete a superuser account. Cisco has released free software updates that address this vulnerability.

Original Source

Url : http://www.cisco.com/en/US/products/products_security_advisory09186a008099 (...)

CPE : Common Platform Enumeration

Type	Description	Count
Application	Cisco Unified Customer Voice Portal cpe:2.3:a:cisco:unified_customer_voice_portal:7.0:::::::* cpe:2.3:a:cisco:unified_customer_voice_portal:4.1:::::::* cpe:2.3:a:cisco:unified_customer_voice_portal:4.0:::::::*	3

Open Source Vulnerability Database (OSVDB)

Id	Description
45684	Cisco Unified Customer Voice Portal (CVP) Unspecified Privilege Escalation

Global Informations

Type	Count
CPE ID(s)	3
osvdb(s)	1

	Related
9	CVE-2008-2053
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0343s

Facebook rss twitter linkedin mail