CVE-2014-3272

Published May 26, 2014

Last updated 8 years ago

Overview

Description: The Agent in Cisco Tidal Enterprise Scheduler (TES) 6.1 and earlier allows local users to gain privileges via crafted Tidal Job Buffers (TJB) parameters, aka Bug ID CSCuo33074.
Source: ykramarz@cisco.com
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6
Impact score: 10
Exploitability score: 1.5
Vector string: AV:L/AC:H/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-20

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "604D2DCC-A9BF-4BB5-BBEC-54A167A01CB0",
            "versionEndIncluding": "6.1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C757135-03AB-433F-BB30-9666E6F5A09D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:3.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C18BF421-7E50-4EFC-848E-B945DE0666FD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:5.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BEF346DB-ADEC-45A9-9960-A0605D2B3424"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:5.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC6AA3AE-F0A0-4710-9357-758EFF3F0B5E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:5.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44544AF2-7110-41B0-803A-9BD82E21C217"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F136B43F-473C-4ADC-B85B-700F5A6F79FE"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96B2F152-F2B1-4015-BA95-7F07F1852159"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40428F66-6ED4-4B58-BB20-60E28F1B551B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tidal_enterprise_scheduler:6.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26123892-3385-4ECC-82B0-34A82EF01795"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References