CVE-2015-0773

Loading...

General

Score:5.5/10.0
Severity:Medium
Category:Access Control Error

Impact Metrics

Confidentiality:None
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:Single

Published on 12/06/15 - Updated on 04/01/17

Description

Cisco FireSIGHT System Software 5.3.1.3 and 6.0.0 allows remote authenticated users to delete an arbitrary user's dashboard via a modified VPN deletion request in a management session, aka Bug ID CSCut67078.

Category: Access Control Error

CWE-264 (Permissions, Privileges, and Access Control)
Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Security Notices

US National Vulnerability DatabaseCVE-2015-0773

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
ciscofiresight_system_software

Share this vulnerability with:

Twitter Facebook LinkedIn Mail