Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.6
CVSSv2

CVE-2013-5506

Published: 13/10/2013 Updated: 15/10/2013
CVSS v2 Base Score: 6.6 | Impact Score: 10 | Exploitability Score: 2.7
VMScore: 587
Vector: AV:L/AC:M/Au:S/C:C/I:C/A:C
Subscribe to Cisco

Vulnerability Summary

The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x prior to 3.2(25) and 4.x prior to 4.1(13), when multiple-context mode is enabled, allows local users to read or modify any context's configuration via unspecified commands, aka Bug ID CSCue46080.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco firewall services module software 4.0

cisco firewall services module software 4.0\\(10\\)

cisco firewall services module software 4.0\\(15\\)

cisco firewall services module software 4.0\\(3\\)

cisco firewall services module software 4.1\\(1\\)

cisco firewall services module software 4.1\\(3\\)

cisco firewall services module software 3.1\\(11\\)

cisco firewall services module software 3.1\\(13\\)

cisco firewall services module software 3.1\\(18\\)

cisco firewall services module software 3.1\\(2\\)

cisco firewall services module software 3.1\\(7\\)

cisco firewall services module software 3.1\\(9\\)

cisco firewall services module software 3.2\\(14\\)

cisco firewall services module software 3.2\\(16\\)

cisco firewall services module software 3.2\\(20\\)

cisco firewall services module software 3.2\\(22\\)

cisco firewall services module software 3.2\\(9\\)

cisco firewall services module software 4.0\\(11\\)

cisco firewall services module software 4.0\\(12\\)

cisco firewall services module software 4.0\\(13\\)

cisco firewall services module software 4.0\\(14\\)

cisco firewall services module software 4.1\\(5\\)

cisco firewall services module software 4.1\\(6\\)

cisco firewall services module software 4.1\\(7\\)

cisco firewall services module software 3.1

cisco firewall services module software 3.1\\(21\\)

cisco firewall services module software 3.1\\(3\\)

cisco firewall services module software 3.1\\(4\\)

cisco firewall services module software 3.1\\(5\\)

cisco firewall services module software 3.2\\(17\\)

cisco firewall services module software 3.2\\(18\\)

cisco firewall services module software 3.2\\(19\\)

cisco firewall services module software 3.2\\(2\\)

cisco firewall services module software 4.1\\(8\\)

cisco firewall services module software 4.1\\(9\\)

cisco firewall services module software 4.1\\(10\\)

cisco firewall services module software 4.1\\(11\\)

cisco firewall services module software 4.0\\(5\\)

cisco firewall services module software 4.0\\(6\\)

cisco firewall services module software 4.0\\(7\\)

cisco firewall services module software 4.0\\(8\\)

cisco firewall services module software 3.1\\(14\\)

cisco firewall services module software 3.1\\(15\\)

cisco firewall services module software 3.1\\(16\\)

cisco firewall services module software 3.1\\(17\\)

cisco firewall services module software 3.2\\(1\\)

cisco firewall services module software 3.2\\(10\\)

cisco firewall services module software 3.2\\(11\\)

cisco firewall services module software 3.2\\(12\\)

cisco firewall services module software 3.2\\(4\\)

cisco firewall services module software 3.2\\(5\\)

cisco firewall services module software 3.2\\(6\\)

cisco firewall services module software 3.2\\(7\\)

cisco firewall services module software 3.2\\(8\\)

cisco firewall services module software 4.1\\(12\\)

cisco firewall services module software 4.0\\(1\\)

cisco firewall services module software 4.0\\(2\\)

cisco firewall services module software 4.0\\(4\\)

cisco firewall services module software 4.1

cisco firewall services module software 4.1\\(2\\)

cisco firewall services module software 4.1\\(4\\)

cisco firewall services module software 3.1\\(10\\)

cisco firewall services module software 3.1\\(12\\)

cisco firewall services module software 3.1\\(19\\)

cisco firewall services module software 3.1\\(20\\)

cisco firewall services module software 3.1\\(6\\)

cisco firewall services module software 3.1\\(8\\)

cisco firewall services module software 3.2

cisco firewall services module software 3.2\\(13\\)

cisco firewall services module software 3.2\\(15\\)

cisco firewall services module software 3.2\\(21\\)

cisco firewall services module software 3.2\\(3\\)

Vendor Advisories

Cisco: Cisco Firewall Services Module Command Authorization Vulnerability
A vulnerability in the authorization code of the Cisco Firewall Services Module (FWSM) could allow an authenticated but unprivileged, local attacker to delete, modify, or view the configuration of any other context of the affected system The vulnerability is due to insufficient authorization safeguards of certain administrative commands in a user ...
Cisco: Multiple Vulnerabilities in Cisco Firewall Services Module Software
Cisco Firewall Services Module (FWSM) Software for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers is affected by the following vulnerabilities: Cisco FWSM Command Authorization Vulnerability SQL*Net Inspection Engine Denial of Service Vulnerability These vulnerabilities are independent of each other; a release that is a ...

References

CWE-264http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-fwsmhttps://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20131009-CVE-2013-5506
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook