CVE-2010-3038

Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier for remote attackers to obtain access via the (a) FTP or (b) SSH daemon, aka Bug ID CSCti54008.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
VendorProductVersion
ciscounified_videoconferencing_system_5110_firmware
7.0.1.13.3
ciscounified_videoconferencing_system_5115_firmware
7.0.1.13.3
ciscounified_videoconferencing_system_5110
*
ciscounified_videoconferencing_system_5115
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2010/Nov/167
http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html
http://www.securityfocus.com/bid/44924
http://www.securitytracker.com/id?1024753
http://www.trustmatta.com/advisories/MATTA-2010-001.txt
http://seclists.org/fulldisclosure/2010/Nov/167
http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html
http://www.securityfocus.com/bid/44924
http://www.securitytracker.com/id?1024753
http://www.trustmatta.com/advisories/MATTA-2010-001.txt