Multiple Vulnerabilities in Cisco Network Building Mediator

cisco-sa-20100526-mediator · Critical · Published 15 years ago · Updated 15 years ago

Data: Cisco advisories 1 day ago · Cisco CSAF 4 hours ago · NVD CVEs 7 hours ago · NVD CPEs 1 day ago · CISA KEV 1 day ago · EPSS 1 day ago

Multiple vulnerabilities exist in the Cisco Network Building Mediator (NBM) products. These vulnerabilities also affect the legacy Richards-Zeta Mediator products. This security advisory outlines details of the following vulnerabilities: Default credentials Privilege escalation Unauthorized information interception Unauthorized information access Cisco has released software updates that address these vulnerabilities. Workarounds that mitigate some of the listed vulnerabilities are available. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20100526-mediator .

Cisco advisory ·CSAF JSON

Workarounds

No workaround information imported yet.

CVEs	CVE-2010-0595, CVE-2010-0596, CVE-2010-0597, CVE-2010-0598, CVE-2010-0599, CVE-2010-0600
Cisco Bug IDs	NA
CVSS Score	Base 10.0 Base 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND Base 9.0 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND Base 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND

Products with public affected evidence

Product	CVE	Affected evidence
Cisco Network Building Mediator Framework	CVE-2010-0595	structured affected CSAF product_status
Cisco Network Building Mediator Framework	CVE-2010-0600	structured affected CSAF product_status
Cisco Network Building Mediator Framework	CVE-2010-0597	structured affected CSAF product_status
Cisco Network Building Mediator Framework	CVE-2010-0596	structured affected CSAF product_status
Cisco Network Building Mediator Framework	CVE-2010-0599	structured affected CSAF product_status
Cisco Network Building Mediator Framework	CVE-2010-0598	structured affected CSAF product_status