Lucene search

[email protected]NVD:CVE-2011-0376

HistoryFeb 25, 2011 - 12:00 p.m.

CVE-2011-0376

2011-02-2512:00:18

CWE-200

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.6%

JSON

The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers to obtain sensitive information via a GET request, aka Bug ID CSCte43876.

Affected configurations

NVD

Node

ciscotelepresence_system_softwareMatch1.2.3

ciscotelepresence_system_softwareMatch1.3.2

ciscotelepresence_system_softwareMatch1.4.7

ciscotelepresence_system_softwareMatch1.5.1

ciscotelepresence_system_softwareMatch1.5.3

ciscotelepresence_system_softwareMatch1.5.10

ciscotelepresence_system_softwareMatch1.5.11

ciscotelepresence_system_softwareMatch1.5.12

ciscotelepresence_system_softwareMatch1.5.13

ciscotelepresence_system_softwareMatch1.6.0

ciscotelepresence_system_softwareMatch1.6.1

AND

ciscotelepresence_system_1000

ciscotelepresence_system_1100

Node

ciscotelepresence_system_softwareMatch1.2.3

ciscotelepresence_system_softwareMatch1.3.2

ciscotelepresence_system_softwareMatch1.4.7

ciscotelepresence_system_softwareMatch1.5.1

ciscotelepresence_system_softwareMatch1.5.3

ciscotelepresence_system_softwareMatch1.5.10

ciscotelepresence_system_softwareMatch1.5.11

ciscotelepresence_system_softwareMatch1.5.12

ciscotelepresence_system_softwareMatch1.5.13

ciscotelepresence_system_softwareMatch1.6.0

ciscotelepresence_system_softwareMatch1.6.1

AND

ciscotelepresence_system_3000

Node

ciscotelepresence_system_softwareMatch1.5.10

ciscotelepresence_system_softwareMatch1.5.11

ciscotelepresence_system_softwareMatch1.5.12

ciscotelepresence_system_softwareMatch1.5.13

ciscotelepresence_system_softwareMatch1.6.0

ciscotelepresence_system_softwareMatch1.6.1

AND

ciscotelepresence_system_1300_series

Node

ciscotelepresence_system_softwareMatch1.4.7

ciscotelepresence_system_softwareMatch1.5.1

ciscotelepresence_system_softwareMatch1.5.3

ciscotelepresence_system_softwareMatch1.5.10

ciscotelepresence_system_softwareMatch1.5.11

ciscotelepresence_system_softwareMatch1.5.12

ciscotelepresence_system_softwareMatch1.5.13

ciscotelepresence_system_softwareMatch1.6.0

ciscotelepresence_system_softwareMatch1.6.1

AND

ciscotelepresence_system_3200_series

Node

ciscotelepresence_system_softwareMatch1.4.7

ciscotelepresence_system_softwareMatch1.5.1

ciscotelepresence_system_softwareMatch1.5.3

ciscotelepresence_system_softwareMatch1.5.10

ciscotelepresence_system_softwareMatch1.5.11

ciscotelepresence_system_softwareMatch1.5.12

ciscotelepresence_system_softwareMatch1.5.13

ciscotelepresence_system_softwareMatch1.6.0

ciscotelepresence_system_softwareMatch1.6.1

AND

ciscotelepresence_system_500_series

References

www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml

www.securitytracker.com/id?1025112

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.6%

JSON

Related for NVD:CVE-2011-0376

prion1 cvelist1 cve1 cisco1 securityvulns2