Lucene search

CiscoCVE-2014-2173

HistoryMay 02, 2014 - 10:55 a.m.

CVE-2014-2173

2014-05-0210:55:08

CWE-264

cisco

web.nvd.nist.gov

cisco

telepresence

tc software

te software

privilege escalation

bug id

cscub67692

cve-2014-2173

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

64.8%

JSON

Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 do not properly restrict access to the serial port, which allows local users to gain privileges via unspecified commands, aka Bug ID CSCub67692.

Affected configurations

Nvd

Node

ciscotelepresence_te_softwareMatch4.1.0

ciscotelepresence_te_softwareMatch4.1.1

ciscotelepresence_te_softwareMatch4.1.2

ciscotelepresence_te_softwareMatch4.1.3

ciscotelepresence_te_softwareMatch6.0

Node

ciscotelepresence_tc_softwareMatch4.0.0

ciscotelepresence_tc_softwareMatch4.0.1

ciscotelepresence_tc_softwareMatch4.0.4

ciscotelepresence_tc_softwareMatch4.1.1

ciscotelepresence_tc_softwareMatch4.1.2

ciscotelepresence_tc_softwareMatch4.2.0

ciscotelepresence_tc_softwareMatch4.2.1

ciscotelepresence_tc_softwareMatch4.2.2

ciscotelepresence_tc_softwareMatch4.2.3

ciscotelepresence_tc_softwareMatch4.2.4

ciscotelepresence_tc_softwareMatch5.0.0

ciscotelepresence_tc_softwareMatch5.0.1

ciscotelepresence_tc_softwareMatch5.0.2

ciscotelepresence_tc_softwareMatch5.1.0

ciscotelepresence_tc_softwareMatch5.1.1

ciscotelepresence_tc_softwareMatch5.1.2

ciscotelepresence_tc_softwareMatch5.1.3

ciscotelepresence_tc_softwareMatch5.1.4

ciscotelepresence_tc_softwareMatch5.1.5

ciscotelepresence_tc_softwareMatch5.1.6

ciscotelepresence_tc_softwareMatch5.1.7

VendorProductVersionCPE
ciscotelepresence_te_software4.1.0cpe:2.3:a:cisco:telepresence_te_software:4.1.0:*:*:*:*:*:*:*
ciscotelepresence_te_software4.1.1cpe:2.3:a:cisco:telepresence_te_software:4.1.1:*:*:*:*:*:*:*
ciscotelepresence_te_software4.1.2cpe:2.3:a:cisco:telepresence_te_software:4.1.2:*:*:*:*:*:*:*
ciscotelepresence_te_software4.1.3cpe:2.3:a:cisco:telepresence_te_software:4.1.3:*:*:*:*:*:*:*
ciscotelepresence_te_software6.0cpe:2.3:a:cisco:telepresence_te_software:6.0:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.0.0cpe:2.3:a:cisco:telepresence_tc_software:4.0.0:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.0.1cpe:2.3:a:cisco:telepresence_tc_software:4.0.1:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.0.4cpe:2.3:a:cisco:telepresence_tc_software:4.0.4:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.1.1cpe:2.3:a:cisco:telepresence_tc_software:4.1.1:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.1.2cpe:2.3:a:cisco:telepresence_tc_software:4.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	telepresence_te_software	4.1.0	cpe:2.3:a:cisco:telepresence_te_software:4.1.0:::::::*
cisco	telepresence_te_software	4.1.1	cpe:2.3:a:cisco:telepresence_te_software:4.1.1:::::::*
cisco	telepresence_te_software	4.1.2	cpe:2.3:a:cisco:telepresence_te_software:4.1.2:::::::*
cisco	telepresence_te_software	4.1.3	cpe:2.3:a:cisco:telepresence_te_software:4.1.3:::::::*
cisco	telepresence_te_software	6.0	cpe:2.3:a:cisco:telepresence_te_software:6.0:::::::*
cisco	telepresence_tc_software	4.0.0	cpe:2.3:a:cisco:telepresence_tc_software:4.0.0:::::::*
cisco	telepresence_tc_software	4.0.1	cpe:2.3:a:cisco:telepresence_tc_software:4.0.1:::::::*
cisco	telepresence_tc_software	4.0.4	cpe:2.3:a:cisco:telepresence_tc_software:4.0.4:::::::*
cisco	telepresence_tc_software	4.1.1	cpe:2.3:a:cisco:telepresence_tc_software:4.1.1:::::::*
cisco	telepresence_tc_software	4.1.2	cpe:2.3:a:cisco:telepresence_tc_software:4.1.2:::::::*