Command Injection Vulnerability in Cisco TelePresence Endpoint Devices

Command Injection Vulnerability in Cisco TelePresence Endpoint Devices

CVE-2011-0375 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCth24671.

Learn more about our Cis Benchmark Audit For Cisco.