admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2015/CVE-2015-64xx/CVE-2015-6412.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

130 lines
4.1 KiB
JSON
Raw Blame History

{
"id": "CVE-2015-6412",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2016-01-22T11:59:00.130",
"lastModified": "2016-01-25T15:37:17.413",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Cisco Modular Encoding Platform D9036 Software before 02.04.70 has hardcoded (1) root and (2) guest passwords, which makes it easier for remote attackers to obtain access via an SSH session, aka Bug ID CSCut88070."
},
{
"lang": "es",
"value": "Cisco Modular Encoding Platform D9036 Software en versiones anteriores a 02.04.70 tiene contrase\u00f1as embebidas de (1) root y (2) guest, lo que hace m\u00e1s f\u00e1cil para atacantes remotos obtener acceso a trav\u00e9s de una sesi\u00f3n SSH, tambi\u00e9n conocido como Bug ID CSCut88070."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-255"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:modular_encoding_platform_d9036_software:02.00.80:*:*:*:*:*:*:*",
"matchCriteriaId": "A51B3DD6-C241-49F9-B2BE-987A5E505695"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:modular_encoding_platform_d9036_software:02.01.50:*:*:*:*:*:*:*",
"matchCriteriaId": "52D08AA9-DA96-4962-9422-8114FE10D5EF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:modular_encoding_platform_d9036_software:02.02.30:*:*:*:*:*:*:*",
"matchCriteriaId": "898F1F87-3FE7-43A2-A8F0-82148DB13C15"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:modular_encoding_platform_d9036_software:02.03.30:*:*:*:*:*:*:*",
"matchCriteriaId": "8FC95B56-7955-4415-8384-1CF08F969B85"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:cisco:modular_encoding_platform_d9036:*:*:*:*:*:*:*:*",
"matchCriteriaId": "22C700EE-D1E5-4A8B-87D0-DBD645D6444B"
}
]
}
]
}
],
"references": [
{
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160120-d9036",
"source": "ykramarz@cisco.com",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink