Vulnerability Details CVE-2011-0392
Cisco TelePresence Recording Server devices with software 1.6.x do not require authentication for an XML-RPC interface, which allows remote attackers to perform unspecified actions via a session on TCP port 8080, aka Bug ID CSCtg35833.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e11d.shtml
- http://www.securityfocus.com/bid/46522
- http://www.securitytracker.com/id?1025114
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65609
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e11d.shtml
- http://www.securityfocus.com/bid/46522
- http://www.securitytracker.com/id?1025114
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65609
Products affected by CVE-2011-0392
-
cpe:2.3:a:cisco:telepresence_recording_server_software:1.6.1
-
cpe:2.3:a:cisco:telepresence_recording_server_software:1.6.2
-
cpe:2.3:a:cisco:telepresence_recording_server_software:1.6.3
-
cpe:2.3:h:cisco:telepresence_recording_server:*