CVE-2013-3462 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.5 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:S/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 92%

Affected Products (NVD)

Vendor	Product	Version
cisco	unified_communications_manager	8.6
cisco	unified_communications_manager	8.6\(1\)
cisco	unified_communications_manager	8.6\(1a\)
cisco	unified_communications_manager	8.6\(2\)
cisco	unified_communications_manager	8.6\(2a\)
cisco	unified_communications_manager	8.6\(2a\)su1
cisco	unified_communications_manager	8.6\(2a\)su2
cisco	unified_communications_manager	9.1\(1\)
cisco	unified_communications_manager	9.1\(1a\)
cisco	unified_communications_manager	9.1.1\(a\)
cisco	unified_communications_manager	7.1\(2a\)
cisco	unified_communications_manager	7.1\(2a\)su1
cisco	unified_communications_manager	7.1\(2b\)
cisco	unified_communications_manager	7.1\(2b\)su1
cisco	unified_communications_manager	7.1\(3\)
cisco	unified_communications_manager	7.1\(3a\)
cisco	unified_communications_manager	7.1\(3a\)su1
cisco	unified_communications_manager	7.1\(3a\)su1a
cisco	unified_communications_manager	7.1\(3b\)
cisco	unified_communications_manager	7.1\(3b\)su1
cisco	unified_communications_manager	7.1\(3b\)su2
cisco	unified_communications_manager	7.1\(5\)
cisco	unified_communications_manager	7.1\(5\)su1
cisco	unified_communications_manager	7.1\(5\)su1a
cisco	unified_communications_manager	7.1\(5a\)
cisco	unified_communications_manager	7.1\(5b\)
cisco	unified_communications_manager	7.1\(5b\)su1
cisco	unified_communications_manager	7.1\(5b\)su1a
cisco	unified_communications_manager	7.1\(5b\)su2
cisco	unified_communications_manager	7.1\(5b\)su3
cisco	unified_communications_manager	7.1\(5b\)su4
cisco	unified_communications_manager	7.1\(5b\)su5
cisco	unified_communications_manager	7.1\(5b\)su6
cisco	unified_communications_manager	8.5
cisco	unified_communications_manager	8.5\(1\)
cisco	unified_communications_manager	8.5\(1\)su1
cisco	unified_communications_manager	8.5\(1\)su2
cisco	unified_communications_manager	8.5\(1\)su3
cisco	unified_communications_manager	8.5\(1\)su4
cisco	unified_communications_manager	8.5\(1\)su5

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130821-cucm

http://www.securitytracker.com/id/1028938

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130821-cucm

http://www.securitytracker.com/id/1028938