Vulnerabilities > CVE-2013-3433 - Local Privilege Escalation vulnerability in Cisco Unified Communications Manager
Attack vector
LOCAL Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Untrusted search path vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allows local users to gain privileges by leveraging unspecified file-permission and environment-variable issues for privileged programs, aka Bug ID CSCui02276. Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'