CVE-2013-3379

EPSS 0.23%
Veröffentlicht 21.06.2013 13:57:25
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle psirt@cisco.com
Teams Watchlist Login
Unerledigt Login

The firewall subsystem in Cisco TelePresence TC Software before 4.2 does not properly implement rules that grant access to hosts, which allows remote attackers to obtain shell access with root privileges by leveraging connectivity to the management network, aka Bug ID CSCts37781.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Telepresence Tc Software Version <= 4.1.2

Cisco ≫ Telepresence Tc Software Version4.0.0

Cisco ≫ Telepresence Tc Software Version4.0.1

Cisco ≫ Telepresence Tc Software Version4.0.4

Cisco ≫ Telepresence Tc Software Version4.1.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.23%	0.431

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.3	6.5	10	AV:A/AC:L/Au:N/C:C/I:C/A:C

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130619-tpc

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2013-3379

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-3379

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-3379

EUVD