Authorization Flaw in Cisco Firewall Services Module
CVE-2013-5506

Currently unrated

Key Information:

Vendor: Cisco
Status: Firewall Services Module Software
Vendor: CVE Published:; 13 October 2013

Summary

The Cisco Firewall Services Module (FWSM) exhibits a vulnerability in its authorization functionality when operating in multiple-context mode. Versions 3.1.x and 3.2.x prior to 3.2(25), as well as versions 4.x before 4.1(13), allow local users to access and alter configurations of any context. This exposure stems from unspecified commands, enabling potential unauthorized modifications to critical security settings within the firewall.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 13, 2013