Vulnerability Details CVE-2012-0363
The web interface on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability," aka Bug ID CSCtt46871.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.6%
CVSS Severity
CVSS v2 Score 9.0
References
Products affected by CVE-2012-0363
-
cpe:2.3:a:cisco:small_business_srp520-u_series_firmware:1.1.0
-
cpe:2.3:a:cisco:small_business_srp520_series_firmware:*
-
cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.01
-
cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.09
-
cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.11
-
cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.19
-
cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.23
-
cpe:2.3:a:cisco:small_business_srp540_series_firmware:*
-
cpe:2.3:a:cisco:small_business_srp540_series_firmware:1.02.00.023
-
cpe:2.3:h:cisco:small_business_srp521w-u:*
-
cpe:2.3:h:cisco:small_business_srp521w:*
-
cpe:2.3:h:cisco:small_business_srp526w-u:*
-
cpe:2.3:h:cisco:small_business_srp526w:*
-
cpe:2.3:h:cisco:small_business_srp527w-u:*
-
cpe:2.3:h:cisco:small_business_srp527w:*
-
cpe:2.3:h:cisco:small_business_srp541w:*
-
cpe:2.3:h:cisco:small_business_srp546w:*
-
cpe:2.3:h:cisco:small_business_srp547w:*