Lucene search
HistoryFeb 25, 2011 - 12:00 p.m.
CVE-2011-0372
cisco
telepresence
endpoint devices
cgi
remote attackers
command execution
command injection vulnerabilities
bug id csctb31640
8.1 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0 Low
EPSS
Percentile
0.0%
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to “command injection vulnerabilities,” aka Bug ID CSCtb31640.
Affected configurations
Node
ciscotelepresence_system_softwareMatch1.2.3
ORciscotelepresence_system_softwareMatch1.3.2
ORciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ciscotelepresence_system_1000
ORciscotelepresence_system_1100
Node
ciscotelepresence_system_softwareMatch1.2.3
ORciscotelepresence_system_softwareMatch1.3.2
ORciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ciscotelepresence_system_3000
Node
ciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ciscotelepresence_system_1300_series
Node
ciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ciscotelepresence_system_3200_series
Node
ciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ciscotelepresence_system_500_series
Related
nvd
nvd
CVE-2011-0372
2011-02-25 12:00:01
cvelist
cvelist
CVE-2011-0372
2011-02-25 11:00:00
prion
prion
Command injection
2011-02-25 12:00:00
securityvulns
securityvulns
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices
2011-02-28 00:00:00
Cisco Telepresence multiple security vulnerabilities
2011-02-28 00:00:00
cisco
cisco
Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices
2011-02-23 16:00:00
8.1 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0 Low
EPSS
Percentile
0.0%
Related for CVE-2011-0372