Sign-up

ID

VAR-201512-0418


CVE

CVE-2015-6385


TITLE

Cisco Cloud Services Router 1000V Run on Cisco IOS In root Vulnerability to execute arbitrary commands with privileges

Trust: 0.8

sources: JVNDB: JVNDB-2015-006056

DESCRIPTION

The publish-event event-manager feature in Cisco IOS 15.5(2)S and 15.5(3)S on Cloud Services Router 1000V devices allows local users to execute arbitrary commands with root privileges by leveraging administrative access to enter crafted environment variables, aka Bug ID CSCux14943. in the 1000V series of cloud service routers. A security vulnerability exists in the Cisco IOS 15.5(2)S and 15.5(3)S versions of the publish-event event-manager feature on Cisco CSR 1000V appliances. This issue is being tracked by Cisco bug ID CSCux14943

Trust: 2.52

sources: NVD: CVE-2015-6385 // JVNDB: JVNDB-2015-006056 // CNVD: CNVD-2015-07873 // BID: 78318 // VULHUB: VHN-84346

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2015-07873

AFFECTED PRODUCTS

vendor:ciscomodel:iosscope:eqversion:15.5\(2\)s

Trust: 1.6

vendor:ciscomodel:iosscope:eqversion:15.5\(3\)s

Trust: 1.6

vendor:ciscomodel:iosscope:eqversion:15.5(2)s

Trust: 0.8

vendor:ciscomodel:iosscope:eqversion:15.5(3)s

Trust: 0.8

vendor:ciscomodel:cloud services routerscope:eqversion:1000v

Trust: 0.6

vendor:ciscomodel:ios 15.7 mscope: - version: -

Trust: 0.3

vendor:ciscomodel:cloud services router seriesscope:eqversion:1000v0

Trust: 0.3

vendor:ciscomodel:ios 15.5 sscope: - version: -

Trust: 0.3

sources: CNVD: CNVD-2015-07873 // BID: 78318 // JVNDB: JVNDB-2015-006056 // CNNVD: CNNVD-201512-001 // NVD: CVE-2015-6385

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-6385
value: HIGH

Trust: 1.0

NVD: CVE-2015-6385
value: HIGH

Trust: 0.8

CNVD: CNVD-2015-07873
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201512-001
value: HIGH

Trust: 0.6

VULHUB: VHN-84346
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2015-6385
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2015-07873
severity: MEDIUM
baseScore: 6.8
vectorString: AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.1
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-84346
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2015-07873 // VULHUB: VHN-84346 // JVNDB: JVNDB-2015-006056 // CNNVD: CNNVD-201512-001 // NVD: CVE-2015-6385

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-84346 // JVNDB: JVNDB-2015-006056 // NVD: CVE-2015-6385

THREAT TYPE

local

Trust: 0.9

sources: BID: 78318 // CNNVD: CNNVD-201512-001

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201512-001

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-006056

PATCH
title:cisco-sa-20151130-csrurl:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151130-csr
Trust: 0.8
title:Cisco Cloud Services Router 1000V Command Injection Vulnerability Patchurl:https://www.cnvd.org.cn/patchInfo/show/67519
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2015-07873 // 
            
            
            
            JVNDB: JVNDB-2015-006056

EXTERNAL IDS
db:NVDid:CVE-2015-6385
Trust: 3.4
db:SECTRACKid:1034274
Trust: 1.1
db:JVNDBid:JVNDB-2015-006056
Trust: 0.8
db:CNNVDid:CNNVD-201512-001
Trust: 0.7
db:CNVDid:CNVD-2015-07873
Trust: 0.6
db:BIDid:78318
Trust: 0.4
db:VULHUBid:VHN-84346
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2015-07873 // 
            
            
            
            VULHUB: VHN-84346 // 
            
            
            
            BID: 78318 // 
            
            
            
            JVNDB: JVNDB-2015-006056 // 
            
            
            
            CNNVD: CNNVD-201512-001 // 
            
            
            
            NVD: CVE-2015-6385

REFERENCES
url:http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20151130-csr
Trust: 2.0
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6385
Trust: 1.4
url:http://www.securitytracker.com/id/1034274
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6385
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
url:http://www.cisco.com/c/en/us/products/routers/cloud-services-router-1000v-series/index.html
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2015-07873 // 
            
            
            
            VULHUB: VHN-84346 // 
            
            
            
            BID: 78318 // 
            
            
            
            JVNDB: JVNDB-2015-006056 // 
            
            
            
            CNNVD: CNNVD-201512-001 // 
            
            
            
            NVD: CVE-2015-6385

CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
            
            
            BID: 78318

SOURCES
db:CNVDid:CNVD-2015-07873
db:VULHUBid:VHN-84346
db:BIDid:78318
db:JVNDBid:JVNDB-2015-006056
db:CNNVDid:CNNVD-201512-001
db:NVDid:CVE-2015-6385

LAST UPDATE DATE
2025-04-13T23:42:02.622000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-07873date:2015-12-03T00:00:00
db:VULHUBid:VHN-84346date:2017-09-14T00:00:00
db:BIDid:78318date:2015-11-30T00:00:00
db:JVNDBid:JVNDB-2015-006056date:2015-12-02T00:00:00
db:CNNVDid:CNNVD-201512-001date:2015-12-02T00:00:00
db:NVDid:CVE-2015-6385date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:CNVDid:CNVD-2015-07873date:2015-12-03T00:00:00
db:VULHUBid:VHN-84346date:2015-12-01T00:00:00
db:BIDid:78318date:2015-11-30T00:00:00
db:JVNDBid:JVNDB-2015-006056date:2015-12-02T00:00:00
db:CNNVDid:CNNVD-201512-001date:2015-12-02T00:00:00
db:NVDid:CVE-2015-6385date:2015-12-01T11:59:00.127