Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-2486
cisco
cdp
implementation
remote code execution
cve-2012-2486
telepresence
vulnerability
nvd
8.3 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.2%
The Cisco Discovery Protocol (CDP) implementation on Cisco TelePresence Multipoint Switch before 1.9.0, Cisco TelePresence Immersive Endpoint Devices before 1.9.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server before 1.8.1 allows remote attackers to execute arbitrary code by leveraging certain adjacency and sending a malformed CDP packet, aka Bug IDs CSCtz40953, CSCtz40947, CSCtz40965, and CSCtz40953.
Affected configurations
Node
ciscotelepresence_multipoint_switch_softwareRange≤1.8.3\(9\)
ORciscotelepresence_multipoint_switch_softwareMatch1.0.4.0
ORciscotelepresence_multipoint_switch_softwareMatch1.0.4.0\(21\)
ORciscotelepresence_multipoint_switch_softwareMatch1.1.0
ORciscotelepresence_multipoint_switch_softwareMatch1.1.0\(254\)
ORciscotelepresence_multipoint_switch_softwareMatch1.1.1
ORciscotelepresence_multipoint_switch_softwareMatch1.1.1\(30\)
ORciscotelepresence_multipoint_switch_softwareMatch1.1.2
ORciscotelepresence_multipoint_switch_softwareMatch1.1.2\(6\)
ORciscotelepresence_multipoint_switch_softwareMatch1.5.0
ORciscotelepresence_multipoint_switch_softwareMatch1.5.0\(222\)
ORciscotelepresence_multipoint_switch_softwareMatch1.5.1
ORciscotelepresence_multipoint_switch_softwareMatch1.5.1\(2\)
ORciscotelepresence_multipoint_switch_softwareMatch1.5.2
ORciscotelepresence_multipoint_switch_softwareMatch1.5.2\(21\)
ORciscotelepresence_multipoint_switch_softwareMatch1.5.3
ORciscotelepresence_multipoint_switch_softwareMatch1.5.3.12
ORciscotelepresence_multipoint_switch_softwareMatch1.5.4
ORciscotelepresence_multipoint_switch_softwareMatch1.5.4\(4\)
ORciscotelepresence_multipoint_switch_softwareMatch1.5.5
ORciscotelepresence_multipoint_switch_softwareMatch1.5.5\(1\)
ORciscotelepresence_multipoint_switch_softwareMatch1.5.6
ORciscotelepresence_multipoint_switch_softwareMatch1.5.6\(1\)
ORciscotelepresence_multipoint_switch_softwareMatch1.6.0
ORciscotelepresence_multipoint_switch_softwareMatch1.6.0\(108\)
ORciscotelepresence_multipoint_switch_softwareMatch1.6.1
ORciscotelepresence_multipoint_switch_softwareMatch1.6.1\(2\)
ORciscotelepresence_multipoint_switch_softwareMatch1.6.2
ORciscotelepresence_multipoint_switch_softwareMatch1.6.2\(3\)
ORciscotelepresence_multipoint_switch_softwareMatch1.6.3
ORciscotelepresence_multipoint_switch_softwareMatch1.6.3\(2\)
ORciscotelepresence_multipoint_switch_softwareMatch1.6.4
ORciscotelepresence_multipoint_switch_softwareMatch1.6.4\(3\)
ORciscotelepresence_multipoint_switch_softwareMatch1.7.0
ORciscotelepresence_multipoint_switch_softwareMatch1.7.0.1\(5\)
ORciscotelepresence_multipoint_switch_softwareMatch1.7.1\(15\)
ORciscotelepresence_multipoint_switch_softwareMatch1.7.2\(75\)
ORciscotelepresence_multipoint_switch_softwareMatch1.7.3\(2\)
ORciscotelepresence_multipoint_switch_softwareMatch1.8.0
ORciscotelepresence_multipoint_switch_softwareMatch1.8.0\(1026\)
ORciscotelepresence_multipoint_switch_softwareMatch1.8.1\(1041\)
ORciscotelepresence_multipoint_switch_softwareMatch1.8.2
ORciscotelepresence_multipoint_switch_softwareMatch1.8.2\(2\)
ciscotelepresence_multipoint_switch
Node
ciscotelepresence_system_softwareRange≤1.9.0.1\(3\)
ORciscotelepresence_system_softwareMatch1.2.3\(1101\)
ORciscotelepresence_system_softwareMatch1.3.2\(1393\)
ORciscotelepresence_system_softwareMatch1.4.7\(2229\)
ORciscotelepresence_system_softwareMatch1.5.1\(2082\)
ORciscotelepresence_system_softwareMatch1.5.3\(2115\)
ORciscotelepresence_system_softwareMatch1.5.10\(3648\)
ORciscotelepresence_system_softwareMatch1.5.11\(3659\)
ORciscotelepresence_system_softwareMatch1.5.12\(3701\)
ORciscotelepresence_system_softwareMatch1.5.13\(3717\)
ORciscotelepresence_system_softwareMatch1.6.0\(3954\)
ORciscotelepresence_system_softwareMatch1.6.2\(4023\)
ORciscotelepresence_system_softwareMatch1.6.3\(4042\)
ORciscotelepresence_system_softwareMatch1.6.4\(4072\)
ORciscotelepresence_system_softwareMatch1.6.5\(4097\)
ORciscotelepresence_system_softwareMatch1.6.6\(4109\)
ORciscotelepresence_system_softwareMatch1.6.7\(4212\)
ORciscotelepresence_system_softwareMatch1.6.8\(4222\)
ORciscotelepresence_system_softwareMatch1.7.0.1\(4764\)
ORciscotelepresence_system_softwareMatch1.7.0.2\(4719\)
ORciscotelepresence_system_softwareMatch1.7.1\(4864\)
ORciscotelepresence_system_softwareMatch1.7.2\(4937\)
ORciscotelepresence_system_softwareMatch1.7.2.1\(2\)
ORciscotelepresence_system_softwareMatch1.7.4\(270\)
ORciscotelepresence_system_softwareMatch1.7.5\(42\)
ORciscotelepresence_system_softwareMatch1.7.6\(4\)
ORciscotelepresence_system_softwareMatch1.8.0\(55\)
ORciscotelepresence_system_softwareMatch1.8.1\(34\)
ORciscotelepresence_system_softwareMatch1.8.2\(11\)
ORciscotelepresence_system_softwareMatch1.8.3\(4\)
ORciscotelepresence_system_softwareMatch1.9.0\(46\)
ORciscotelepresence_system_softwareMatch4.0.0
ciscotelepresence_system_1300_65
ORciscotelepresence_system_3000
ORciscotelepresence_system_3010
ORciscotelepresence_system_3200
ORciscotelepresence_system_3210
ORciscotelepresence_system_t3
ORciscotelepresence_system_t3custom
ORciscotelepresence_system_tx1300_47
ORciscotelepresence_system_tx1310_65
ORciscotelepresence_system_tx9000
ORciscotelepresence_system_tx9200
Node
ciscotelepresence_managerRange≤1.8.1\(682\)
ORciscotelepresence_managerMatch1.1.0.0
ORciscotelepresence_managerMatch1.1.0.0\(209\)
ORciscotelepresence_managerMatch1.2.0.0
ORciscotelepresence_managerMatch1.2.0.0\(200\)
ORciscotelepresence_managerMatch1.3.2\(466\)
ORciscotelepresence_managerMatch1.4.0\(279\)
ORciscotelepresence_managerMatch1.5.1\(420\)
ORciscotelepresence_managerMatch1.5.2\(423\)
ORciscotelepresence_managerMatch1.6.0\(220\)
ORciscotelepresence_managerMatch1.6.2\(64\)
ORciscotelepresence_managerMatch1.6.3\(113\)
ORciscotelepresence_managerMatch1.6.5\(167\)
ORciscotelepresence_managerMatch1.7.1\(732\)
ORciscotelepresence_managerMatch1.7.2\(256\)
ORciscotelepresence_managerMatch1.7.3.1
ORciscotelepresence_managerMatch1.7.4
ORciscotelepresence_managerMatch1.7.5\(62\)
ORciscotelepresence_managerMatch1.8.0\(582\)
Node
ciscotelepresence_recording_serverRange≤1.8.0\(160\)
ORciscotelepresence_recording_serverMatch1.6.1\(2\)
ORciscotelepresence_recording_serverMatch1.6.2\(31\)
ORciscotelepresence_recording_serverMatch1.6.3\(4\)
ORciscotelepresence_recording_serverMatch1.7.0\(190\)
ORciscotelepresence_recording_serverMatch1.7.1\(22\)
ORciscotelepresence_recording_serverMatch1.7.2.1
ORciscotelepresence_recording_serverMatch1.7.3\(3\)
References
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctms
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctrs
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctsman
Related
prion
prion
Design/Logic Flaw
2012-07-12 10:34:00
cvelist
cvelist
CVE-2012-2486
2022-10-03 16:15:36
nvd
nvd
CVE-2012-2486
2012-07-12 10:34:42
cisco
cisco
Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch
2012-07-11 16:00:00
Multiple Vulnerabilities in Cisco TelePresence Manager
2012-07-11 16:00:00
Multiple Vulnerabilities in Cisco TelePresence Recording Server
2012-07-11 16:00:00
nessus
nessus
securityvulns
securityvulns
Cisco TelePresence applications multiple security vulnerabilities
2012-07-16 00:00:00
8.3 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.2%
Related for CVE-2012-2486