Arbitrary Command Execution Vulnerability in Cisco TelePresence Immersive Endpoint Devices (Bug ID CSCtz38382)

Arbitrary Command Execution Vulnerability in Cisco TelePresence Immersive Endpoint Devices (Bug ID CSCtz38382)

CVE-2012-3074 · HIGH Severity

AV:A/AC:L/AU:N/C:C/I:C/A:C

An unspecified API on Cisco TelePresence Immersive Endpoint Devices before 1.9.1 allows remote attackers to execute arbitrary commands by leveraging certain adjacency and sending a malformed request on TCP port 61460, aka Bug ID CSCtz38382.

Learn more about our Cis Benchmark Audit For Cisco.