CyberSec.Space Logo
Back to CVE Browser

CVE-2011-0376

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0130%
EPSS Percentile41.10th
PublishedFeb 25, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers to obtain sensitive information via a GET request, aka Bug ID CSCte43876.

Affected Platforms (CPE)

πŸ“¦
Cisco

Telepresence System Software

= 1.2.3
πŸ“¦
Cisco

Telepresence System Software

= 1.3.2
πŸ“¦
Cisco

Telepresence System Software

= 1.4.7
πŸ“¦
Cisco

Telepresence System Software

= 1.5.1
πŸ“¦
Cisco

Telepresence System Software

= 1.5.3
πŸ“¦
Cisco

Telepresence System Software

= 1.5.10
πŸ“¦
Cisco

Telepresence System Software

= 1.5.11
πŸ“¦
Cisco

Telepresence System Software

= 1.5.12
πŸ“¦
Cisco

Telepresence System Software

= 1.5.13
πŸ”Œ
Cisco

Telepresence System 1000

All versions
πŸ”Œ
Cisco

Telepresence System 1100

All versions
πŸ”Œ
Cisco

Telepresence System 3000

All versions
πŸ”Œ
Cisco

Telepresence System 1300 Series

All versions
πŸ”Œ
Cisco

Telepresence System 3200 Series

All versions
πŸ“¦
Cisco

Telepresence System Software

= 1.6.0
πŸ“¦
Cisco

Telepresence System Software

= 1.6.1
πŸ”Œ
Cisco

Telepresence System 500 Series

All versions

References & Advisories

πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml
πŸ”— http://www.securitytracker.com/id?1025112
πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml
πŸ”— http://www.securitytracker.com/id?1025112

Related Vulnerabilities

CVE-2013-345410.0

Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00...

CVE-2017-37929.8

A vulnerability in a proprietary device driver in the kernel of Cisco TelePresence Multipoint Control Unit (MCU) Software could al...

CVE-2014-21699.0

Cisco TelePresence TC Software 4.x through 6.x before 6.2.0 and TE Software 4.x and 6.0 allow remote authenticated users to execut...

CVE-2017-37908.6

A vulnerability in the received packet parser of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) s...