CVSS: 9.8EPSS: 4%CPEs: 108EXPL: 0CVE-2011-0379
https://notcve.org/view.php?id=CVE-2011-0379
25 Feb 2011 — Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x; and Cisco TelePresence Manager 1.2.x, 1.3.x, 1.4.x, 1.5.x, and 1.6.2 allows remote attackers to execute arbitrary code via a crafted Cisco Discovery Protocol packet, aka Bug IDs CSCtd75769, CSCtd75766, CSCtd75754, and CSCtd75761. Desbordamien... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e11d.shtml • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 4%CPEs: 42EXPL: 0CVE-2011-0372
https://notcve.org/view.php?id=CVE-2011-0372
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640. La implementación CGI en dispositivos Cisco TelePresence con software v1.2.x hasta v1.5.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la " vulnerabilidades de inyección de comandos", tambié... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 42EXPL: 0CVE-2011-0373
https://notcve.org/view.php?id=CVE-2011-0373
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31685. La implementación CGI en dispositivos Cisco TelePresence con software v1.2.x hasta v1.5.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la " vulnerabilidad de inyección de comandos"... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 42EXPL: 0CVE-2011-0374
https://notcve.org/view.php?id=CVE-2011-0374
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31659. La implementación CGI en dispositivos Cisco TelePresence con software v1.2.x hasta v1.5.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la " vulnerabilidad de inyección de comandos"... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 82EXPL: 0CVE-2011-0375
https://notcve.org/view.php?id=CVE-2011-0375
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCth24671. La implementación CGI en dispositivos Cisco TelePresence endpoint con software v1.2.x hasta v1.6.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la "vulnerabilidad de inyección de c... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 1%CPEs: 52EXPL: 0CVE-2011-0376
https://notcve.org/view.php?id=CVE-2011-0376
25 Feb 2011 — The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers to obtain sensitive information via a GET request, aka Bug ID CSCte43876. La implementación TFTP en los dispositivos de Cisco TelePresence endpoint con software v1.2.x hasta v1.5.x, v1.6.0 y v1.6.1 permite a atacantes remotos obtener información sensible a través de una petición GET, también conocido como error ID CSCte43876. • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •