2 matches found
Cisco Unified IP Phones 9900 Series Image Upgrade Command Injection (CVE-2013-5533)
The image-upgrade functionality on Cisco 9900 Unified IP phones allows local users to gain privileges by placing shell commands in an unspecified parameter, aka Bug ID CSCuh10334. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...
CVE-2013-5533
CVE-2013-5533 affects Cisco Unified IP Phones 9900 Series. The vulnerability arises in the image-upgrade functionality where an authenticated, local attacker can gain privileges by injecting shell commands into an unsanitized parameter during the upgrade process, enabling command execution with O...