NVD

Id
39253  
Name
CVE-2013-3454  
Description
Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00 devices, has a default password for the pwrecovery account, which makes it easier for remote attackers to modify the configuration or perform arbitrary actions via HTTPS requests, aka Bug ID CSCui43128.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2013-08-08  
Modified Date
2013-08-09  
Seq
2013-3454  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
200473 39253 CVE-2013-3454 20130807 Cisco TelePresence System Default Credentials Vulnerability  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22105 JVNDB-2013-003680 複数の Cisco TelePresence System デバイス上で稼働する Cisco TelePresence System Software における設定を変更される脆弱性 複数の Cisco TelePresence System デバイス上で稼働する Cisco TelePresence System Software は、pwrecovery アカウントのデフォルトパスワードを持っているため、設定を変更される、または任意のアクションを実行される脆弱性が存在します。 CVE-2013-3454 63396 CVE-2013-3454 39253 10 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003680.html 2013-08-07 2013-08-12 View