CVE-2013-5506

EUVD-2013-5346
The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(25) and 4.x before 4.1(13), when multiple-context mode is enabled, allows local users to read or modify any context's configuration via unspecified commands, aka Bug ID CSCue46080.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.6 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:S/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
Affected Products (NVD)
VendorProductVersion
ciscofirewall_services_module_software
3.1
ciscofirewall_services_module_software
3.1\(2\)
ciscofirewall_services_module_software
3.1\(3\)
ciscofirewall_services_module_software
3.1\(4\)
ciscofirewall_services_module_software
3.1\(5\)
ciscofirewall_services_module_software
3.1\(6\)
ciscofirewall_services_module_software
3.1\(7\)
ciscofirewall_services_module_software
3.1\(8\)
ciscofirewall_services_module_software
3.1\(9\)
ciscofirewall_services_module_software
3.1\(10\)
ciscofirewall_services_module_software
3.1\(11\)
ciscofirewall_services_module_software
3.1\(12\)
ciscofirewall_services_module_software
3.1\(13\)
ciscofirewall_services_module_software
3.1\(14\)
ciscofirewall_services_module_software
3.1\(15\)
ciscofirewall_services_module_software
3.1\(16\)
ciscofirewall_services_module_software
3.1\(17\)
ciscofirewall_services_module_software
3.1\(18\)
ciscofirewall_services_module_software
3.1\(19\)
ciscofirewall_services_module_software
3.1\(20\)
ciscofirewall_services_module_software
3.1\(21\)
ciscofirewall_services_module_software
3.2
ciscofirewall_services_module_software
3.2\(1\)
ciscofirewall_services_module_software
3.2\(2\)
ciscofirewall_services_module_software
3.2\(3\)
ciscofirewall_services_module_software
3.2\(4\)
ciscofirewall_services_module_software
3.2\(5\)
ciscofirewall_services_module_software
3.2\(6\)
ciscofirewall_services_module_software
3.2\(7\)
ciscofirewall_services_module_software
3.2\(8\)
ciscofirewall_services_module_software
3.2\(9\)
ciscofirewall_services_module_software
3.2\(10\)
ciscofirewall_services_module_software
3.2\(11\)
ciscofirewall_services_module_software
3.2\(12\)
ciscofirewall_services_module_software
3.2\(13\)
ciscofirewall_services_module_software
3.2\(14\)
ciscofirewall_services_module_software
3.2\(15\)
ciscofirewall_services_module_software
3.2\(16\)
ciscofirewall_services_module_software
3.2\(17\)
ciscofirewall_services_module_software
3.2\(18\)
ciscofirewall_services_module_software
3.2\(19\)
ciscofirewall_services_module_software
3.2\(20\)
ciscofirewall_services_module_software
3.2\(21\)
ciscofirewall_services_module_software
3.2\(22\)
ciscofirewall_services_module_software
4.0
ciscofirewall_services_module_software
4.0\(1\)
ciscofirewall_services_module_software
4.0\(2\)
ciscofirewall_services_module_software
4.0\(3\)
ciscofirewall_services_module_software
4.0\(4\)
ciscofirewall_services_module_software
4.0\(5\)
ciscofirewall_services_module_software
4.0\(6\)
ciscofirewall_services_module_software
4.0\(7\)
ciscofirewall_services_module_software
4.0\(8\)
ciscofirewall_services_module_software
4.0\(10\)
ciscofirewall_services_module_software
4.0\(11\)
ciscofirewall_services_module_software
4.0\(12\)
ciscofirewall_services_module_software
4.0\(13\)
ciscofirewall_services_module_software
4.0\(14\)
ciscofirewall_services_module_software
4.0\(15\)
ciscofirewall_services_module_software
4.1
ciscofirewall_services_module_software
4.1\(1\)
ciscofirewall_services_module_software
4.1\(2\)
ciscofirewall_services_module_software
4.1\(3\)
ciscofirewall_services_module_software
4.1\(4\)
ciscofirewall_services_module_software
4.1\(5\)
ciscofirewall_services_module_software
4.1\(6\)
ciscofirewall_services_module_software
4.1\(7\)
ciscofirewall_services_module_software
4.1\(8\)
ciscofirewall_services_module_software
4.1\(9\)
ciscofirewall_services_module_software
4.1\(10\)
ciscofirewall_services_module_software
4.1\(11\)
ciscofirewall_services_module_software
4.1\(12\)
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-fwsm
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-fwsm