Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2007-1062
HistoryFeb 22, 2007 - 1:28 a.m.

CVE-2007-1062

2007-02-2201:28:00
CWE-287
[email protected]
web.nvd.nist.gov
26
cisco
unified ip
conference station
authentication bypass
cve-2007-1062
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.065 Low

EPSS

Percentile

93.8%

JSON

The Cisco Unified IP Conference Station 7935 3.2(15) and earlier, and Station 7936 3.3(12) and earlier does not properly handle administrator HTTP sessions, which allows remote attackers to bypass authentication controls via a direct URL request to the administrative HTTP interface for a limited time

Affected configurations

NVD
Node
ciscounified_ip_conference_station_7935_firmwareRange3.2\(15\)
AND
ciscounified_ip_conference_station_7935Match-
Node
ciscounified_ip_conference_station_firmware_7936Range3.3\(12\)
AND
ciscounified_ip_conference_station_7936Match-

Related

nvd 1
cvelist 1
prion 1
securityvulns 1
cisco 1
nvd
nvd
CVE-2007-1062
2007-02-22 01:28:00
cvelist
cvelist
CVE-2007-1062
2007-02-22 01:00:00
prion
prion
Authentication flaw
2007-02-22 01:28:00
securityvulns
securityvulns
Cisco IP Phones unauthorized access
2007-02-21 00:00:00
cisco
cisco
Cisco Unified IP Conference Station and IP Phone Vulnerabilities
2007-02-21 16:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.065 Low

EPSS

Percentile

93.8%

JSON
Related for CVE-2007-1062
nvd1cvelist1prion1securityvulns1cisco1