Cisco Content Security Management Appliance (SMA) 13.6.2-023

CPE Details

Cisco Content Security Management Appliance (SMA) 13.6.2-023
cisco
content_security_management_appliance
13.6.2-023
2020-09-11
10h02 +00:00
2020-09-11
10h02 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:content_security_management_appliance:13.6.2-023:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

content_security_management_appliance

Version

13.6.2-023

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-1447 2021-05-06 12h40 +00:00 A vulnerability in the user account management system of Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, local attacker to elevate their privileges to root. This vulnerability is due to a procedural flaw in the password generation algorithm. An attacker could exploit this vulnerability by enabling specific Administrator-only features and connecting to the appliance through the CLI with elevated privileges. A successful exploit could allow the attacker to execute arbitrary commands as root and access the underlying operating system. To exploit this vulnerability, the attacker must have valid Administrator credentials.
6.7
Medium