CVE-2012-0363

The web interface on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability," aka Bug ID CSCtt46871.

Severity	HIGH
CVSS	9.0
CWE	CWE-94
KEV
Published	14 years ago
Modified	2 weeks ago

Related Products

Product	Advisory
Cisco SRP500 Services Ready Platforms	cisco-sa-20120223-srp500
Cisco RV Series Routers	cisco-sa-20120223-srp500
Cisco Nexus Dashboard	cisco-sa-20120223-srp500
Cisco Meraki MS Series Switches	cisco-sa-20120223-srp500
Cisco Application Centric Infrastructure Virtual Edge	cisco-sa-20120223-srp500
Cisco Small Business SRP500 Series Services Ready Platforms	cisco-sa-20120223-srp500