CVE-2013-1125
medium
Cisco CVSS v3 Base Score
6.8
AV:L/AC:L/Au:S/C:C/I:C/A:C
EPSS Score
0.5%
Exploitation probability in 30 days
Top 36% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: February 19, 2013 (4831 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD
Vulnerability Report
Generated by CyberWatcher
Description
The command-line interface in Cisco Identity Services Engine Software, Secure Access Control System (ACS), Application Networking Manager (ANM), Prime LAN Management Solution (LMS), Prime Network Control System, Quad, Context Directory Agent, Prime Collaboration, Unified Provisioning Manager, and Network Services Manager does not properly validate input, which allows local users to obtain root privileges via unspecified vectors, aka Bug IDs CSCue46001, CSCud95790, CSCue46021, CSCue46025, CSCue46023, CSCue46058, CSCue46013, CSCue46031, CSCue46035, and CSCue46042.
CWE
CWE-20Affected Products
cisco application networking managercisco context directory agentcisco identity services engine softwarecisco network services managercisco prime collaborationcisco prime lan management solutioncisco prime network control systemcisco quadcisco secure access control systemcisco unified provisioning manager