Lucene search
HistoryFeb 25, 2011 - 12:00 p.m.
CVE-2011-0375
cisco
telepresence
endpoint
cgi implementation
command injection vulnerabilities
cve-2011-0375
nvd
7.7 High
AI Score
Confidence
Low
9 High
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
44.2%
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to “command injection vulnerabilities,” aka Bug ID CSCth24671.
Affected configurations
Node
ciscotelepresence_system_softwareMatch1.2.3
ORciscotelepresence_system_softwareMatch1.3.2
ORciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ORciscotelepresence_system_softwareMatch1.6.0
ORciscotelepresence_system_softwareMatch1.6.2
ORciscotelepresence_system_softwareMatch1.6.3
ORciscotelepresence_system_softwareMatch1.6.4
ORciscotelepresence_system_softwareMatch1.6.5
ORciscotelepresence_system_softwareMatch1.6.6
ORciscotelepresence_system_softwareMatch1.6.7
ORciscotelepresence_system_softwareMatch1.6.8
ciscotelepresence_system_1000
ORciscotelepresence_system_1100
Node
ciscotelepresence_system_softwareMatch1.2.3
ORciscotelepresence_system_softwareMatch1.3.2
ORciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ORciscotelepresence_system_softwareMatch1.6.0
ORciscotelepresence_system_softwareMatch1.6.2
ORciscotelepresence_system_softwareMatch1.6.3
ORciscotelepresence_system_softwareMatch1.6.4
ORciscotelepresence_system_softwareMatch1.6.5
ORciscotelepresence_system_softwareMatch1.6.6
ORciscotelepresence_system_softwareMatch1.6.7
ORciscotelepresence_system_softwareMatch1.6.8
ciscotelepresence_system_3000
Node
ciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ORciscotelepresence_system_softwareMatch1.6.0
ORciscotelepresence_system_softwareMatch1.6.2
ORciscotelepresence_system_softwareMatch1.6.3
ORciscotelepresence_system_softwareMatch1.6.4
ORciscotelepresence_system_softwareMatch1.6.5
ORciscotelepresence_system_softwareMatch1.6.6
ORciscotelepresence_system_softwareMatch1.6.7
ORciscotelepresence_system_softwareMatch1.6.8
ciscotelepresence_system_1300_series
Node
ciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ORciscotelepresence_system_softwareMatch1.6.0
ORciscotelepresence_system_softwareMatch1.6.2
ORciscotelepresence_system_softwareMatch1.6.3
ORciscotelepresence_system_softwareMatch1.6.4
ORciscotelepresence_system_softwareMatch1.6.5
ORciscotelepresence_system_softwareMatch1.6.6
ORciscotelepresence_system_softwareMatch1.6.7
ORciscotelepresence_system_softwareMatch1.6.8
ciscotelepresence_system_3200_series
Node
ciscotelepresence_system_softwareMatch1.4.7
ORciscotelepresence_system_softwareMatch1.5.1
ORciscotelepresence_system_softwareMatch1.5.3
ORciscotelepresence_system_softwareMatch1.5.10
ORciscotelepresence_system_softwareMatch1.5.11
ORciscotelepresence_system_softwareMatch1.5.12
ORciscotelepresence_system_softwareMatch1.5.13
ORciscotelepresence_system_softwareMatch1.6.0
ORciscotelepresence_system_softwareMatch1.6.2
ORciscotelepresence_system_softwareMatch1.6.3
ORciscotelepresence_system_softwareMatch1.6.4
ORciscotelepresence_system_softwareMatch1.6.5
ORciscotelepresence_system_softwareMatch1.6.6
ORciscotelepresence_system_softwareMatch1.6.7
ORciscotelepresence_system_softwareMatch1.6.8
ciscotelepresence_system_500_series
Related
cvelist
cvelist
CVE-2011-0375
2011-02-25 11:00:00
prion
prion
Command injection
2011-02-25 12:00:00
nvd
nvd
CVE-2011-0375
2011-02-25 12:00:18
cisco
cisco
Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices
2011-02-23 16:00:00
securityvulns
securityvulns
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices
2011-02-28 00:00:00
Cisco Telepresence multiple security vulnerabilities
2011-02-28 00:00:00
7.7 High
AI Score
Confidence
Low
9 High
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
44.2%
Related for CVE-2011-0375