CVE-2011-0372

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1220%

EPSS Percentile13.62th

Published2011年2月25日

Last Modified2026年4月29日

Vulnerability Description

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640.

Affected Platforms (CPE)

📦

Cisco

Telepresence System Software

= 1.2.3

📦

Cisco

Telepresence System Software

= 1.3.2

📦

Cisco

Telepresence System Software

= 1.4.7

📦

Cisco

Telepresence System Software

= 1.5.1

📦

Cisco

Telepresence System Software

= 1.5.3

📦

Cisco

Telepresence System Software

= 1.5.10

📦

Cisco

Telepresence System Software

= 1.5.11

📦

Cisco

Telepresence System Software

= 1.5.12

📦

Cisco

Telepresence System Software

= 1.5.13

🔌

Cisco

Telepresence System 1000

All versions

🔌

Cisco

Telepresence System 1100

All versions

🔌

Cisco

Telepresence System 3000

All versions

🔌

Cisco

Telepresence System 1300 Series

All versions

🔌

Cisco

Telepresence System 3200 Series

All versions

🔌

Cisco

Telepresence System 500 Series

All versions

References & Advisories

🔗 http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml

🔗 http://www.securitytracker.com/id?1025112

🔗 http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml

🔗 http://www.securitytracker.com/id?1025112

Vulnerability Description

Affected Platforms (CPE)

Telepresence System Software

Telepresence System Software

Telepresence System Software

Telepresence System Software

Telepresence System Software

Telepresence System Software

Telepresence System Software

Telepresence System Software

Telepresence System Software

Telepresence System 1000

Telepresence System 1100

Telepresence System 3000

Telepresence System 1300 Series

Telepresence System 3200 Series

Telepresence System 500 Series

References & Advisories

相關漏洞威脅