CVE-2014-2174

EUVD-2014-2214
Cisco TelePresence T, TelePresence TE, and TelePresence TC before 7.1 do not properly implement access control, which allows remote attackers to obtain root privileges by sending packets on the local network and allows physically proximate attackers to obtain root privileges via unspecified vectors, aka Bug ID CSCub67651.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.3 UNKNOWN
ADJACENT_NETWORK
LOW
AV:A/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 43%
Affected Products (NVD)
VendorProductVersion
ciscotelepresence_tc_software
3.1.5
ciscotelepresence_tc_software
3.1_base:_base
ciscotelepresence_tc_software
4.1.0
ciscotelepresence_tc_software
4.1.1
ciscotelepresence_tc_software
4.1.2
ciscotelepresence_tc_software
4.1_base:_base
ciscotelepresence_tc_software
4.2.0
ciscotelepresence_tc_software
4.2.1
ciscotelepresence_tc_software
4.2.2
ciscotelepresence_tc_software
4.2.3
ciscotelepresence_tc_software
4.2.4
ciscotelepresence_tc_software
4.2_base:_base
ciscotelepresence_tc_software
5.0.2
ciscotelepresence_tc_software
5.0.2-cucm
ciscotelepresence_tc_software
5.0_base:_base
ciscotelepresence_tc_software
5.1.3
ciscotelepresence_tc_software
5.1.3-cucm
ciscotelepresence_tc_software
5.1.4
ciscotelepresence_tc_software
5.1.4-cucm
ciscotelepresence_tc_software
5.1.5
ciscotelepresence_tc_software
5.1.5-cucm
ciscotelepresence_tc_software
5.1.6
ciscotelepresence_tc_software
5.1.6-cucm
ciscotelepresence_tc_software
5.1.7
ciscotelepresence_tc_software
5.1.7-cucm
ciscotelepresence_tc_software
5.1_base:_base
ciscotelepresence_tc_software
6.0.0
ciscotelepresence_tc_software
6.0.0-cucm
ciscotelepresence_tc_software
6.0.1
ciscotelepresence_tc_software
6.0.1-cucm
ciscotelepresence_tc_software
6.0.2
ciscotelepresence_tc_software
6.0_base:_base
ciscotelepresence_tc_software
6.1.0
ciscotelepresence_tc_software
6.1.0-cucm
ciscotelepresence_tc_software
6.1.1
ciscotelepresence_tc_software
6.1.1-cucm
ciscotelepresence_tc_software
6.1.2
ciscotelepresence_tc_software
6.1.2-cucm
ciscotelepresence_tc_software
6.1_base:_base
ciscotelepresence_tc_software
6.3.0
ciscotelepresence_te_software
6.0.0
ciscotelepresence_te_software
6.0.1
ciscotelepresence_te_software
6.0.2
ciscotelepresence_te_software
6.0_base:_base
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc