cbcvebase.
CVE-2011-4659
published 2012-01-19

CVE-2011-4659: Cisco TelePresence Software before TE 4.1.1 on the Cisco IP Video Phone E20 has a default password for the root account after an upgrade to TE 4.1.0, which…

PriorityP344critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
2.07%
79.1th percentile
Cisco TelePresence Software before TE 4.1.1 on the Cisco IP Video Phone E20 has a default password for the root account after an upgrade to TE 4.1.0, which makes it easier for remote attackers to modify the configuration via an SSH session, aka Bug ID CSCtw69889, a different vulnerability than CVE-2011-2555.

Affected

11 ranges
VendorProductVersion rangeFixed in
ciscoip_video_phone_e20_default_root_account
ciscotelepresence_e20_software<= te4.1.1-cucm
ciscotelepresence_e20_software
ciscotelepresence_e20_software
ciscotelepresence_e20_software
ciscotelepresence_e20_software
ciscotelepresence_e20_software
ciscotelepresence_e20_software
ciscotelepresence_e20_software
ciscotelepresence_e20_software
ciscotelepresence_e20_software

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco10.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.