CVE-2010-3038
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier for remote attackers to obtain access via the (a) FTP or (b) SSH daemon, aka Bug ID CSCti54008.
Cisco Unified Videoconferencing (UVC) System 5110 y 5115, cuando el sistema operativo Linux se usa, tiene una contraseña por defecto para (1) root, (2) cs, y (3) cuentas de desarrollo, lo que hace más sencillo para atacantes remotos obtener acceso a través de (a) FTP o, (b) demonio SSH, también conocido como Bug ID CSCti54008.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-08-17 CVE Reserved
- 2010-11-17 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-255: Credentials Management Errors
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://seclists.org/fulldisclosure/2010/Nov/167 | Mailing List |
|
| http://www.securityfocus.com/bid/44924 | Vdb Entry | |
| http://www.securitytracker.com/id?1024753 | Vdb Entry | |
| http://www.trustmatta.com/advisories/MATTA-2010-001.txt | X_refsource_misc |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html | 2010-12-10 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Unified Videoconferencing System 5110 Firmware Search vendor "Cisco" for product "Unified Videoconferencing System 5110 Firmware" | 7.0.1.13.3 Search vendor "Cisco" for product "Unified Videoconferencing System 5110 Firmware" and version "7.0.1.13.3" | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Videoconferencing System 5110 Search vendor "Cisco" for product "Unified Videoconferencing System 5110" | * | - |
Affected
|
| Cisco Search vendor "Cisco" | Unified Videoconferencing System 5110 Firmware Search vendor "Cisco" for product "Unified Videoconferencing System 5110 Firmware" | 7.0.1.13.3 Search vendor "Cisco" for product "Unified Videoconferencing System 5110 Firmware" and version "7.0.1.13.3" | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Videoconferencing System 5115 Search vendor "Cisco" for product "Unified Videoconferencing System 5115" | * | - |
Affected
|
| Cisco Search vendor "Cisco" | Unified Videoconferencing System 5110 Firmware Search vendor "Cisco" for product "Unified Videoconferencing System 5110 Firmware" | 7.0.1.13.3 Search vendor "Cisco" for product "Unified Videoconferencing System 5110 Firmware" and version "7.0.1.13.3" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | * | - |
Safe
|
| Cisco Search vendor "Cisco" | Unified Videoconferencing System 5115 Firmware Search vendor "Cisco" for product "Unified Videoconferencing System 5115 Firmware" | 7.0.1.13.3 Search vendor "Cisco" for product "Unified Videoconferencing System 5115 Firmware" and version "7.0.1.13.3" | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Videoconferencing System 5110 Search vendor "Cisco" for product "Unified Videoconferencing System 5110" | * | - |
Affected
|
| Cisco Search vendor "Cisco" | Unified Videoconferencing System 5115 Firmware Search vendor "Cisco" for product "Unified Videoconferencing System 5115 Firmware" | 7.0.1.13.3 Search vendor "Cisco" for product "Unified Videoconferencing System 5115 Firmware" and version "7.0.1.13.3" | - |
Affected
| in | Cisco Search vendor "Cisco" | Unified Videoconferencing System 5115 Search vendor "Cisco" for product "Unified Videoconferencing System 5115" | * | - |
Affected
|
| Cisco Search vendor "Cisco" | Unified Videoconferencing System 5115 Firmware Search vendor "Cisco" for product "Unified Videoconferencing System 5115 Firmware" | 7.0.1.13.3 Search vendor "Cisco" for product "Unified Videoconferencing System 5115 Firmware" and version "7.0.1.13.3" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | * | - |
Safe
|