CVE-2011-2538

CWE-743 documents3 sources
Severity
7.2HIGH
EPSS
2.8%
top 13.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Telepresence Video Communication ServerCisco Cisco Video Communications Server (vcs)
Timeline
PublishedOct 29
Latest updateApr 22

Description

Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability which allows remote, authenticated attackers to execute arbitrary commands.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-wqmv-59xr-cc6r: Cisco Video Communications Server (VCS) before X72022-04-22
CVEList
CVE-2011-2538: Cisco Video Communications Server (VCS) before X72019-10-28
CVE-2011-2538 (HIGH CVSS 7.2) | Cisco Video Communications Server ( | cvebase.io