cbcvebase.
CVE-2011-0385
published 2011-02-25

CVE-2011-0385: The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices…

PriorityP357critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
5.23%
91.5th percentile
The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote attackers to create or overwrite arbitrary files, and possibly execute arbitrary code, via a crafted request, aka Bug IDs CSCth85786 and CSCth61065.

Affected

20 ranges
VendorProductVersion rangeFixed in
ciscotelepresence_multipoint_switch
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_multipoint_switch_software
ciscotelepresence_recording_server_software
ciscotelepresence_recording_server_software
ciscotelepresence_recording_server_software

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco10.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.