← Back

CVE-2013-1125

nvd nist
Published: Feb 19, 2013Modified: Apr 29, 2026

JSON object

Loading...
6.8
Vector
AV:L/AC:L/Au:S/C:C/I:C/A:C
Exploitability: 3.1 / Impact: 10.0
Source: NVD

Description

The command-line interface in Cisco Identity Services Engine Software, Secure Access Control System (ACS), Application Networking Manager (ANM), Prime LAN Management Solution (LMS), Prime Network Control System, Quad, Context Directory Agent, Prime Collaboration, Unified Provisioning Manager, and Network Services Manager does not properly validate input, which allows local users to obtain root privileges via unspecified vectors, aka Bug IDs CSCue46001, CSCud95790, CSCue46021, CSCue46025, CSCue46023, CSCue46058, CSCue46013, CSCue46031, CSCue46035, and CSCue46042.

Affected (10)

Cisco
10 products
Application Networking Manager
Context Directory Agent
Identity Services Engine Software
Network Services Manager
Prime Collaboration
Prime Lan Management Solution
Prime Network Control System
Quad
Secure Access Control System
Unified Provisioning Manager
Configuration A
10 vulnerable
Vulnerable SoftwareAffected Versions
Application Networking Manager
All versions
Context Directory Agent
All versions
Identity Services Engine Software
All versions
Network Services Manager
All versions
Prime Collaboration
All versions
Prime Lan Management Solution
All versions
Prime Network Control System
All versions
Quad
All versions
Secure Access Control System
All versions
Unified Provisioning Manager
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.