CVE-2012-3076

CWE-78 — OS Command Injection4 documents4 sources

Severity

9.0CRITICAL

EPSS

0.6%

top 29.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Telepresence Recording Server

Timeline

PublishedJul 12

Latest updateMay 17

Description

The administrative web interface on Cisco TelePresence Recording Server before 1.8.0 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Bug ID CSCth85804.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages1 packages

▶NVDcisco/telepresence_recording_server1.7.3\(3\)+6

🔴Vulnerability Details

GHSA

GHSA-qpp8-m6p9-xw2x: The administrative web interface on Cisco TelePresence Recording Server before 1↗2022-05-17

▶

CVEList

CVE-2012-3076: The administrative web interface on Cisco TelePresence Recording Server before 1↗2012-07-12

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco TelePresence Recording Server↗2012-07-11

▶