CVE-2013-3408

Published: Jul 10, 2013Modified: Apr 29, 2026

6.8

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 3.1 / Impact: 10.0

Source: NVD

Description

The firmware on Cisco Virtualization Experience Client 6000 devices sets incorrect operating-system permissions, which allows local users to gain privileges via an unspecified sequence of commands, aka Bug ID CSCuc31764.

Affected (3)

Products: Cisco: Virtualization Experience Client 6000 Series Firmware, Virtualization Experience Client 6000, Virtualization Experience Client 6215

Cisco

3 products

Virtualization Experience Client 6000 Series Firmware

Virtualization Experience Client 6000

Virtualization Experience Client 6215

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Cisco Virtualization Experience Client 6000 Series Firmware	All versions
Cisco Virtualization Experience Client 6000	All versions
Cisco Virtualization Experience Client 6215	All versions

Related CWEs

CWE-264

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3408

Source: psirt@cisco.com

Vendor Advisory

http://www.securitytracker.com/id/1028764

Source: psirt@cisco.com

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3408

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1028764

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.