cbcvebase.
CVE-2011-0392
published 2011-02-25

CVE-2011-0392: Cisco TelePresence Recording Server devices with software 1.6.x do not require authentication for an XML-RPC interface, which allows remote attackers to…

PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.39%
81.8th percentile
Cisco TelePresence Recording Server devices with software 1.6.x do not require authentication for an XML-RPC interface, which allows remote attackers to perform unspecified actions via a session on TCP port 8080, aka Bug ID CSCtg35833.

Affected

4 ranges
VendorProductVersion rangeFixed in
ciscotelepresence_recording_server
ciscotelepresence_recording_server_software
ciscotelepresence_recording_server_software
ciscotelepresence_recording_server_software

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_cisco10.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.