CVE-2013-1196
medium
Cisco CVSS v3 Base Score
6.8
AV:L/AC:L/Au:S/C:C/I:C/A:C
EPSS Score
0.1%
Exploitation probability in 30 days
Top 76% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Vulnerability Report
Generated by CyberWatcher
Description
The command-line interface in Cisco Secure Access Control System (ACS), Identity Services Engine Software, Context Directory Agent, Application Networking Manager (ANM), Prime Network Control System, Prime LAN Management Solution (LMS), Prime Collaboration, Unified Provisioning Manager, Network Services Manager, Prime Data Center Network Manager (DCNM), and Quad does not properly validate input, which allows local users to obtain root privileges via unspecified vectors, aka Bug IDs CSCug29384, CSCug13866, CSCug29400, CSCug29406, CSCug29411, CSCug29413, CSCug29416, CSCug29418, CSCug29422, CSCug29425, and CSCug29426, a different issue than CVE-2013-1125.
CWE
CWE-20Affected Products
cisco application networking managercisco context directory agentcisco identity services engine softwarecisco network services managercisco prime collaborationcisco prime data center network managercisco prime lan management solutioncisco prime network control systemcisco quadcisco secure access control system