Описание
Cisco TelePresence endpoints running either CE or TC software contain a vulnerability that could allow an authenticated, local attacker to execute a local shell command injection. More Information: CSCvb25010. Known Affected Releases: 8.1.x. Known Fixed Releases: 6.3.4 7.3.7 8.2.2 8.3.0.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:telepresence_tc_software:7.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.1.4:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.3.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:7.3.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:telepresence_tc_software:8.1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00591
Низкий
5.5 Medium
CVSS3
4.9 Medium
CVSS2
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
Cisco TelePresence endpoints running either CE or TC software contain a vulnerability that could allow an authenticated, local attacker to execute a local shell command injection. More Information: CSCvb25010. Known Affected Releases: 8.1.x. Known Fixed Releases: 6.3.4 7.3.7 8.2.2 8.3.0.
EPSS
Процентиль: 69%
0.00591
Низкий
5.5 Medium
CVSS3
4.9 Medium
CVSS2
Дефекты
CWE-78