9
CVE-2011-2547
- EPSS 2.2%
- Veröffentlicht 28.07.2011 22:55:02
- Zuletzt bearbeitet 16.06.2026 23:31:34
- Quelle psirt@cisco.com
- CVE-Watchlists
- Unerledigt
The web-based management interface on Cisco SA 500 series security appliances with software before 2.1.19 allows remote authenticated users to execute arbitrary commands via crafted parameters to web forms, aka Bug ID CSCtq65681.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Sa500 Software Version <= 2.1.18
Cisco ≫ Sa500 Software Version1.0.14
Cisco ≫ Sa500 Software Version1.0.15
Cisco ≫ Sa500 Software Version1.0.17
Cisco ≫ Sa500 Software Version1.0.39
Cisco ≫ Sa500 Software Version1.1.21
Cisco ≫ Sa500 Software Version1.1.42
Cisco ≫ Sa500 Software Version1.1.65
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.2% | 0.802 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9 | 8 | 10 |
AV:N/AC:L/Au:S/C:C/I:C/A:C
|
http://secunia.com/advisories/45355
http://securitytracker.com/id?1025810
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b8915e.shtml
http://www.securityfocus.com/bid/48810
https://exchange.xforce.ibmcloud.com/vulnerabilities/68738