Cisco TelePresence Endpoint Devices XML-RPC Command Injection Vulnerability

Cisco TelePresence Endpoint Devices XML-RPC Command Injection Vulnerability

CVE-2011-0378 · HIGH Severity

AV:A/AC:L/AU:N/C:C/I:C/A:C

The XML-RPC implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a TCP request, related to a "command injection vulnerability," aka Bug ID CSCtb52587.

Learn more about our Cis Benchmark Audit For Cisco.