NVD

Id
23171  
Name
CVE-2015-0713  
Description
The web framework in Cisco TelePresence Advanced Media Gateway Series Software before 1.1(1.40), Cisco TelePresence IP Gateway Series Software, Cisco TelePresence IP VCR Series Software before 3.0(1.27), Cisco TelePresence ISDN Gateway Software before 2.2(1.94), Cisco TelePresence MCU Software before 4.4(3.54) and 4.5 before 4.5(1.45), Cisco TelePresence MSE Supervisor Software before 2.3(1.38), Cisco TelePresence Serial Gateway Series Software before 1.0(1.42), Cisco TelePresence Server Software for Hardware before 3.1(1.98), and Cisco TelePresence Server Software for Virtual Machine before 4.1(1.79) allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors, aka Bug IDs CSCul55968, CSCur08993, CSCur15803, CSCur15807, CSCur15825, CSCur15832, CSCur15842, CSCur15850, and CSCur15855.  
Reject
 
CVSS Version
2  
CVSS Score
9  
Severity
High  
CVSS Base Score
9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2015-05-24  
Modified Date
2015-05-26  
Seq
2015-0713  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
123033 23171 CVE-2015-0713 20150513 Command Injection Vulnerability in Multiple Cisco TelePresence Products  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
7477 JVNDB-2015-002797 複数の Cisco TelePresence 製品の Web フレームワークにおける root 権限で任意のコマンドを実行される脆弱性 複数の Cisco TelePresence 製品の Web フレームワークには、root 権限で任意のコマンドを実行される脆弱性が存在します。 CVE-2015-0713 77924 CVE-2015-0713 23171 9 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-002797.html 2015-05-13 2015-05-27 View