Lucene search
HistoryMay 02, 2014 - 10:55 a.m.
CVE-2014-2172
6.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:S/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
26.2%
Buffer overflow in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows local users to gain privileges by leveraging improper handling of the u-boot compiler flag for internal executable files, aka Bug ID CSCub67693.
Affected configurations
Node
ciscotelepresence_tc_softwareMatch4.0.0
ORciscotelepresence_tc_softwareMatch4.0.1
ORciscotelepresence_tc_softwareMatch4.0.4
ORciscotelepresence_tc_softwareMatch4.1.1
ORciscotelepresence_tc_softwareMatch4.1.2
ORciscotelepresence_tc_softwareMatch4.2.0
ORciscotelepresence_tc_softwareMatch4.2.1
ORciscotelepresence_tc_softwareMatch4.2.2
ORciscotelepresence_tc_softwareMatch4.2.3
ORciscotelepresence_tc_softwareMatch4.2.4
ORciscotelepresence_tc_softwareMatch5.0.0
ORciscotelepresence_tc_softwareMatch5.0.1
ORciscotelepresence_tc_softwareMatch5.0.2
ORciscotelepresence_tc_softwareMatch5.1.0
ORciscotelepresence_tc_softwareMatch5.1.1
ORciscotelepresence_tc_softwareMatch5.1.2
ORciscotelepresence_tc_softwareMatch5.1.3
ORciscotelepresence_tc_softwareMatch5.1.4
ORciscotelepresence_tc_softwareMatch5.1.5
ORciscotelepresence_tc_softwareMatch5.1.6
ORciscotelepresence_tc_softwareMatch5.1.7
Node
ciscotelepresence_te_softwareMatch4.1.0
ORciscotelepresence_te_softwareMatch4.1.1
ORciscotelepresence_te_softwareMatch4.1.2
ORciscotelepresence_te_softwareMatch4.1.3
ORciscotelepresence_te_softwareMatch6.0
Related
prion
prion
Buffer overflow
2014-05-02 10:55:00
cvelist
cvelist
CVE-2014-2172
2014-05-02 10:00:00
cve
cve
CVE-2014-2172
2014-05-02 10:55:08
cisco
cisco
Cisco TelePresence TC and TE Software u-boot Buffer Overflow Vulnerability
2014-04-30 16:19:51
Multiple Vulnerabilities in Cisco TelePresence TC and TE Software
2014-04-30 16:00:00
openvas
openvas
Cisco TelePresence TC and TE Software Multiple Security Vulnerabilities
2014-05-12 00:00:00
nessus
nessus
securityvulns
securityvulns
Cisco Telepresence multiple security vulnerabilities
2014-05-02 00:00:00
6.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:S/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
26.2%
Related for NVD:CVE-2014-2172