CVE-2011-0385

critical

Cisco

CVSS v3 Base Score

10.0

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS Score

5.0%

Exploitation probability in 30 days

Top 10% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: February 25, 2011 (5557 days ago)

Last Modified: April 29, 2026

Vendor: Cisco

Source: NVD

Description

The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote attackers to create or overwrite arbitrary files, and possibly execute arbitrary code, via a crafted request, aka Bug IDs CSCth85786 and CSCth61065.

CWE

NVD-CWE-Other

Affected Products

cisco telepresence recording server softwarecisco telepresence recording servercisco telepresence multipoint switch softwarecisco telepresence multipoint switch

References

🔗 www.cisco.com 🔗 www.cisco.com 🔗 www.securitytracker.com 🔗 www.securitytracker.com 🔗 exchange.xforce.ibmcloud.com

CVE-2011-0385

Vulnerability Report

Description

CWE

Affected Products

References