National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2019-1966

Change History

Initial Analysis - 9/5/2019 9:55:36 AM

Action Type Old Value New Value
Changed Reference Type
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-ucs-privescalation No Types Assigned
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-ucs-privescalation Vendor Advisory
Added CWE
CWE-264
Added CVSS V2
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Added CVSS V3
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added CPE Configuration
AND
     OR
          *cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:* versions up to (including) 3.2
          *cpe:2.3:o:cisco:nx-os:4.0:*:*:*:*:*:*:*
     OR
          cpe:2.3:h:cisco:ucs_6248_up_fabric_interconnect:-:*:*:*:*:*:*:*
          cpe:2.3:h:cisco:ucs_6296_up_fabric_interconnect:-:*:*:*:*:*:*:*
          cpe:2.3:h:cisco:ucs_6324_fabric_interconnect:-:*:*:*:*:*:*:*
          cpe:2.3:h:cisco:ucs_6332-16up_fabric_interconnect:-:*:*:*:*:*:*:*
          cpe:2.3:h:cisco:ucs_6332_fabric_interconnect:-:*:*:*:*:*:*:*
          cpe:2.3:h:cisco:ucs_6454_fabric_interconnect:-:*:*:*:*:*:*:*
Added CPE Configuration
OR
     *cpe:2.3:a:cisco:unified_computing_system:3.2\(3b\)a:*:*:*:*:*:*:*
     *cpe:2.3:a:cisco:unified_computing_system:4.0\(1a\)a:*:*:*:*:*:*:*