Vulnerability Details CVE-2007-4747
The telnet service in Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) firmware 1.8.1 and earlier, Video Surveillance SP/ISP Decoder Software firmware 1.11.0 and earlier, and the Video Surveillance SP/ISP firmware 1.23.7 and earlier does not require authentication, which allows remote attackers to perform administrative actions, aka CSCsj31729.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.025
EPSS Ranking 84.8%
CVSS Severity
CVSS v2 Score 10.0
References
- http://osvdb.org/37503
- http://secunia.com/advisories/26721
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808b4d38.shtml
- http://www.securityfocus.com/bid/25549
- http://www.securitytracker.com/id?1018655
- http://www.vupen.com/english/advisories/2007/3061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36449
- http://osvdb.org/37503
- http://secunia.com/advisories/26721
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808b4d38.shtml
- http://www.securityfocus.com/bid/25549
- http://www.securitytracker.com/id?1018655
- http://www.vupen.com/english/advisories/2007/3061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36449
Products affected by CVE-2007-4747
-
cpe:2.3:a:cisco:video_surveillance_ip_gateway_encoder_decoder:-
-
cpe:2.3:a:cisco:video_surveillance_ip_gateway_encoder_decoder:1.8.1
-
cpe:2.3:a:cisco:video_surveillance_sp_isp_decoder_software:-
-
cpe:2.3:a:cisco:video_surveillance_sp_isp_decoder_software:1.11.0
-
cpe:2.3:h:cisco:video_surveillance_sp_isp:-
-
cpe:2.3:h:cisco:video_surveillance_sp_isp:1.23.7