CVE-2011-0373

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31685.
OS Command Injection
Severity
UNKNOWN
AV:N/AC:L/Au:S/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
VendorProductVersion
ciscotelepresence_system_software
1.2.3
ciscotelepresence_system_software
1.3.2
ciscotelepresence_system_software
1.4.7
ciscotelepresence_system_software
1.5.1
ciscotelepresence_system_software
1.5.3
ciscotelepresence_system_software
1.5.10
ciscotelepresence_system_software
1.5.11
ciscotelepresence_system_software
1.5.12
ciscotelepresence_system_software
1.5.13
ciscotelepresence_system_1000
*
ciscotelepresence_system_1100
*
ciscotelepresence_system_software
1.2.3
ciscotelepresence_system_software
1.3.2
ciscotelepresence_system_software
1.4.7
ciscotelepresence_system_software
1.5.1
ciscotelepresence_system_software
1.5.3
ciscotelepresence_system_software
1.5.10
ciscotelepresence_system_software
1.5.11
ciscotelepresence_system_software
1.5.12
ciscotelepresence_system_software
1.5.13
ciscotelepresence_system_3000
*
ciscotelepresence_system_software
1.5.10
ciscotelepresence_system_software
1.5.11
ciscotelepresence_system_software
1.5.12
ciscotelepresence_system_software
1.5.13
ciscotelepresence_system_1300_series
*
ciscotelepresence_system_3200_series
*
ciscotelepresence_system_software
1.4.7
ciscotelepresence_system_software
1.5.1
ciscotelepresence_system_software
1.5.3
ciscotelepresence_system_software
1.5.10
ciscotelepresence_system_software
1.5.11
ciscotelepresence_system_software
1.5.12
ciscotelepresence_system_software
1.5.13
ciscotelepresence_system_500_series
*
𝑥
= Vulnerable software versions