CVE-2013-6689

high

Description

Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier allows local users to bypass file permissions, and read, modify, or create arbitrary files, via an "overload" of the command-line utility, aka Bug ID CSCui58229.

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=31758

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6689

Details

Source: Mitre, NVD

Published: 2013-11-18

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.00059