Vulnerability Description
The command-line interface in Cisco Secure Access Control System (ACS), Identity Services Engine Software, Context Directory Agent, Application Networking Manager (ANM), Prime Network Control System, Prime LAN Management Solution (LMS), Prime Collaboration, Unified Provisioning Manager, Network Services Manager, Prime Data Center Network Manager (DCNM), and Quad does not properly validate input, which allows local users to obtain root privileges via unspecified vectors, aka Bug IDs CSCug29384, CSCug13866, CSCug29400, CSCug29406, CSCug29411, CSCug29413, CSCug29416, CSCug29418, CSCug29422, CSCug29425, and CSCug29426, a different issue than CVE-2013-1125.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Application Networking Manager | - |
| Cisco | Context Directory Agent | - |
| Cisco | Identity Services Engine Software | - |
| Cisco | Network Services Manager | - |
| Cisco | Prime Collaboration | - |
| Cisco | Prime Data Center Network Manager | - |
| Cisco | Prime Lan Management Solution | - |
| Cisco | Prime Network Control System | - |
| Cisco | Quad | - |
| Cisco | Secure Access Control System | - |
| Cisco | Unified Provisioning Manager | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1196Vendor Advisory
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1196Vendor Advisory
FAQ
What is CVE-2013-1196?
CVE-2013-1196 is a vulnerability with a CVSS score of 6.8 (MEDIUM). The command-line interface in Cisco Secure Access Control System (ACS), Identity Services Engine Software, Context Directory Agent, Application Networking Manager (ANM), Prime Network Control System, ...
How severe is CVE-2013-1196?
CVE-2013-1196 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1196?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Application Networking Manager, Cisco Context Directory Agent, Cisco Identity Services Engine Software, Cisco Network Services Manager, Cisco Prime Collaboration.