CVE-2011-0388

high

Cisco

CVSS v3 Base Score

7.8

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS Score

1.0%

Exploitation probability in 30 days

Top 23% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

None

Integrity

None

Availability

Published: February 25, 2011 (5557 days ago)

Last Modified: April 29, 2026

Vendor: Cisco

Source: NVD

Description

Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x do not properly restrict remote access to the Java servlet RMI interface, which allows remote attackers to cause a denial of service (memory consumption and web outage) via multiple crafted requests, aka Bug IDs CSCtg35830 and CSCtg35825.

CWE

CWE-399

Affected Products

cisco telepresence recording server softwarecisco telepresence recording servercisco telepresence multipoint switch softwarecisco telepresence multipoint switch

References

🔗 www.cisco.com 🔗 www.cisco.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.securitytracker.com

CVE-2011-0388

Vulnerability Report

Description

CWE

Affected Products

References