VIR Vulnerability Intelligence Relay

CVE-2013-5506

medium
Published 2013-10-13 ยท Modified 2026-04-29
๐Ÿ’ฌ Discuss on Community โœš Propose mitigation
CVSS v3
โ€”
CVSS v4 NEW
โ€”
not yet in upstream
VIR risk
6.6

Description

The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(25) and 4.x before 4.1(13), when multiple-context mode is enabled, allows local users to read or modify any context's configuration via unspecified commands, aka Bug ID CSCue46080.

Predictions

Exploit likelihood
20%
Patch ETA
โ€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ€” if you've already worked around this in production โ€” publish your fix to the community-verified tier.

โœš Propose a mitigation on Community โ†’ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

Application impact
VendorProductVersionsFixed
cisco ciscofirewall_services_module_software3.1
cisco ciscofirewall_services_module_software3.1\(2\)
cisco ciscofirewall_services_module_software3.1\(3\)
cisco ciscofirewall_services_module_software3.1\(4\)
cisco ciscofirewall_services_module_software3.1\(5\)
cisco ciscofirewall_services_module_software3.1\(6\)
cisco ciscofirewall_services_module_software3.1\(7\)
cisco ciscofirewall_services_module_software3.1\(8\)
cisco ciscofirewall_services_module_software3.1\(9\)
cisco ciscofirewall_services_module_software3.1\(10\)
cisco ciscofirewall_services_module_software3.1\(11\)
cisco ciscofirewall_services_module_software3.1\(12\)
cisco ciscofirewall_services_module_software3.1\(13\)
cisco ciscofirewall_services_module_software3.1\(14\)
cisco ciscofirewall_services_module_software3.1\(15\)
cisco ciscofirewall_services_module_software3.1\(16\)
cisco ciscofirewall_services_module_software3.1\(17\)
cisco ciscofirewall_services_module_software3.1\(18\)
cisco ciscofirewall_services_module_software3.1\(19\)
cisco ciscofirewall_services_module_software3.1\(20\)
cisco ciscofirewall_services_module_software3.1\(21\)
cisco ciscofirewall_services_module_software3.2
cisco ciscofirewall_services_module_software3.2\(1\)
cisco ciscofirewall_services_module_software3.2\(2\)
cisco ciscofirewall_services_module_software3.2\(3\)
cisco ciscofirewall_services_module_software3.2\(4\)
cisco ciscofirewall_services_module_software3.2\(5\)
cisco ciscofirewall_services_module_software3.2\(6\)
cisco ciscofirewall_services_module_software3.2\(7\)
cisco ciscofirewall_services_module_software3.2\(8\)
cisco ciscofirewall_services_module_software3.2\(9\)
cisco ciscofirewall_services_module_software3.2\(10\)
cisco ciscofirewall_services_module_software3.2\(11\)
cisco ciscofirewall_services_module_software3.2\(12\)
cisco ciscofirewall_services_module_software3.2\(13\)
cisco ciscofirewall_services_module_software3.2\(14\)
cisco ciscofirewall_services_module_software3.2\(15\)
cisco ciscofirewall_services_module_software3.2\(16\)
cisco ciscofirewall_services_module_software3.2\(17\)
cisco ciscofirewall_services_module_software3.2\(18\)
cisco ciscofirewall_services_module_software3.2\(19\)
cisco ciscofirewall_services_module_software3.2\(20\)
cisco ciscofirewall_services_module_software3.2\(21\)
cisco ciscofirewall_services_module_software3.2\(22\)
cisco ciscofirewall_services_module_software4.0
cisco ciscofirewall_services_module_software4.0\(1\)
cisco ciscofirewall_services_module_software4.0\(2\)
cisco ciscofirewall_services_module_software4.0\(3\)
cisco ciscofirewall_services_module_software4.0\(4\)
cisco ciscofirewall_services_module_software4.0\(5\)
cisco ciscofirewall_services_module_software4.0\(6\)
cisco ciscofirewall_services_module_software4.0\(7\)
cisco ciscofirewall_services_module_software4.0\(8\)
cisco ciscofirewall_services_module_software4.0\(10\)
cisco ciscofirewall_services_module_software4.0\(11\)
cisco ciscofirewall_services_module_software4.0\(12\)
cisco ciscofirewall_services_module_software4.0\(13\)
cisco ciscofirewall_services_module_software4.0\(14\)
cisco ciscofirewall_services_module_software4.0\(15\)
cisco ciscofirewall_services_module_software4.1
cisco ciscofirewall_services_module_software4.1\(1\)
cisco ciscofirewall_services_module_software4.1\(2\)
cisco ciscofirewall_services_module_software4.1\(3\)
cisco ciscofirewall_services_module_software4.1\(4\)
cisco ciscofirewall_services_module_software4.1\(5\)
cisco ciscofirewall_services_module_software4.1\(6\)
cisco ciscofirewall_services_module_software4.1\(7\)
cisco ciscofirewall_services_module_software4.1\(8\)
cisco ciscofirewall_services_module_software4.1\(9\)
cisco ciscofirewall_services_module_software4.1\(10\)
cisco ciscofirewall_services_module_software4.1\(11\)
cisco ciscofirewall_services_module_software4.1\(12\)

References

CWEs

CWE-264

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.