CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-2762

The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF data and the LSRoom_Remoting.authenticate function in gateway.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.015

EPSS Ranking 80.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://securityreason.com/securityalert/8364
http://www.kb.cert.org/vuls/id/213486
http://www.securestate.com/Documents/LifeSize_Room_Advisory.txt
http://www.securityfocus.com/archive/1/519463/100/0/threaded
http://www.securityfocus.com/bid/49330
https://exchange.xforce.ibmcloud.com/vulnerabilities/69445
http://securityreason.com/securityalert/8364
http://www.kb.cert.org/vuls/id/213486
http://www.securestate.com/Documents/LifeSize_Room_Advisory.txt
http://www.securityfocus.com/archive/1/519463/100/0/threaded
http://www.securityfocus.com/bid/49330
https://exchange.xforce.ibmcloud.com/vulnerabilities/69445

Products affected by CVE-2011-2762

Lifesize » Lifesize Room Appliance Software » Version: ls_rm1_3.5.3

cpe:2.3:a:lifesize:lifesize_room_appliance_software:ls_rm1_3.5.3
Lifesize » Lifesize Room Appliance » Version: Any

cpe:2.3:h:lifesize:lifesize_room_appliance:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2762

Products

Pricing

Contact Us