Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2015-0691

Published: 17/04/2015 Updated: 06/01/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Cisco

Vulnerability Summary

A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows remote malicious users to execute arbitrary commands via a crafted web site, aka Bug ID CSCup83001.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco secure desktop 3.1.1

cisco secure desktop 3.0_base

cisco secure desktop 3.4.1108

cisco secure desktop 3.5_base

cisco secure desktop 3.5.841

cisco secure desktop 3.6_base

cisco secure desktop 3.6.6228

cisco secure desktop 3.6.6210

cisco secure desktop 3.6.6203

cisco secure desktop 3.6.6104

cisco secure desktop 3.1_base

cisco secure desktop 3.4.2048

cisco secure desktop 3.2.1.126

cisco secure desktop 3.3.0.151

cisco secure desktop 3.5.2001

cisco secure desktop 3.5.2008

cisco secure desktop 3.6.3002

cisco secure desktop 3.6.5005

cisco secure desktop 3.6.6249

cisco secure desktop 3.6.6020

cisco secure desktop 3.1.0.31

cisco secure desktop 3.1.1.45

cisco secure desktop 3.2_base

cisco secure desktop 3.2.0.136

cisco secure desktop 3.2.1.103

cisco secure desktop 3.6.181

cisco secure desktop 3.6.185

cisco secure desktop 3.6.1001

cisco secure desktop 3.6.2002

cisco secure desktop 3.4_base

cisco secure desktop 3.3_base

cisco secure desktop 3.3.0.118

cisco secure desktop 3.4.0373

cisco secure desktop 3.5.1077

cisco secure desktop 3.5.2003

cisco secure desktop 3.6.4021

cisco secure desktop 3.6.6234

References

CWE-264CWE-78http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150415-csdhttp://www.securitytracker.com/id/1032140https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-26978CVE-2024-26982wirelessCVE-2023-6949CVE-2024-26980CVE-2024-32766CVE-2024-26939cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook