CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
86.5%
The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote attackers to execute arbitrary commands or cause a denial of service (stack memory corruption) via a crafted XML-RPC message, aka Bug ID CSCui32796.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | telepresence_system_software | * | cpe:2.3:a:cisco:telepresence_system_software:*:*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.5.10(3648) | cpe:2.3:a:cisco:telepresence_system_software:1.5.10\(3648\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.7.5(42) | cpe:2.3:a:cisco:telepresence_system_software:1.7.5\(42\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.7.6(4) | cpe:2.3:a:cisco:telepresence_system_software:1.7.6\(4\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.8.0(55) | cpe:2.3:a:cisco:telepresence_system_software:1.8.0\(55\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.8.1(34) | cpe:2.3:a:cisco:telepresence_system_software:1.8.1\(34\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.8.2(11) | cpe:2.3:a:cisco:telepresence_system_software:1.8.2\(11\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.8.3(4) | cpe:2.3:a:cisco:telepresence_system_software:1.8.3\(4\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.8.4(13) | cpe:2.3:a:cisco:telepresence_system_software:1.8.4\(13\):*:*:*:*:*:*:* |
cisco | telepresence_system_software | 1.8.5(4) | cpe:2.3:a:cisco:telepresence_system_software:1.8.5\(4\):*:*:*:*:*:*:* |