Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/12/2014 Updated: 24/01/2015

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Cisco Integrated Management Controller in Cisco Unified Computing System 2.2(2c)A and previous versions allows local users to obtain shell access via a crafted map-nfs command, aka Bug ID CSCup05998.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco unified computing system

Cisco Integrated Management Controller contains a vulnerability that could allow an authenticated, local attacker to gain shell-level access to the affected device The vulnerability is due to improper input validation in the map-nfs command An attacker could exploit this vulnerability by sending crafted commands in the command-line interface of ...

CWE-20 http://tools.cisco.com/security/center/viewAlert.x?alertId=36562 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8003 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20141201-CVE-2014-8003

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-8003

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect