Command Injection Vulnerability in Cisco TelePresence Endpoint Devices

Command Injection Vulnerability in Cisco TelePresence Endpoint Devices

CVE-2011-0372 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640.

Learn more about our Cis Benchmark Audit For Cisco.