Lucene search

PRIOn knowledge basePRION:CVE-2011-0374

HistoryFeb 25, 2011 - 12:00 p.m.

Command injection

2011-02-2512:00:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

44.3%

JSON

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to “command injection vulnerabilities,” aka Bug ID CSCtb31659.

CPENameOperatorVersion
telepresence_system_softwareeq1.2.3
telepresence_system_softwareeq1.3.2
telepresence_system_softwareeq1.4.7
telepresence_system_softwareeq1.5.1
telepresence_system_softwareeq1.5.3
telepresence_system_softwareeq1.5.10
telepresence_system_softwareeq1.5.11
telepresence_system_softwareeq1.5.12
telepresence_system_softwareeq1.5.13
telepresence_system_softwareeq1.2.3

Name	Operator	Version
telepresence_system_software	eq	1.2.3
telepresence_system_software	eq	1.3.2
telepresence_system_software	eq	1.4.7
telepresence_system_software	eq	1.5.1
telepresence_system_software	eq	1.5.3
telepresence_system_software	eq	1.5.10
telepresence_system_software	eq	1.5.11
telepresence_system_software	eq	1.5.12
telepresence_system_software	eq	1.5.13
telepresence_system_software	eq	1.2.3

Rows per page:

1-10 of 291

References

www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml

www.securitytracker.com/id?1025112

8 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

44.3%

JSON

Related for PRION:CVE-2011-0374