CVE-2006-3592

CWE-119Buffer OverflowCWE-94Code Injection4 documents4 sources
Severity
4.6MEDIUM
EPSS
0.9%
top 23.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Unified Callmanager
Timeline
PublishedJul 18
Latest updateMay 1

Description

Unspecified vulnerability in the command line interface (CLI) in Cisco Unified CallManager (CUCM) 5.0(1) through 5.0(3a) allows local users to execute arbitrary commands with elevated privileges via unspecified vectors, involving "certain CLI commands," aka bug CSCse11005.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDcisco/unified_callmanager4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-vrm2-68wq-2hr3: Unspecified vulnerability in the command line interface (CLI) in Cisco Unified CallManager (CUCM) 52022-05-01
CVEList
CVE-2006-3592: Unspecified vulnerability in the command line interface (CLI) in Cisco Unified CallManager (CUCM) 52006-07-14

📋Vendor Advisories

1
Cisco
Multiple Cisco Unified CallManager Vulnerabilities2006-07-12
CVE-2006-3592 (MEDIUM CVSS 4.6) | Unspecified vulnerability in the co | cvebase.io