Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2015-0611

The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote authenticated users to obtain HelpDesk-equivalent privileges by leveraging device-recovery authentication, aka Bug ID CSCus74174.

SeverityMEDIUM
CVSS6.5
CWECWE-264
KEV
Published
Modified

Related Products

Product Advisory Evidence
Cisco TelePresence System Software Cisco-SA-20150211-CVE-2015-0611 Cisco OpenVuln
Cisco TelePresence IX5000 Cisco-SA-20150211-CVE-2015-0611 Cisco OpenVuln
Cisco TelePresence Cisco-SA-20150211-CVE-2015-0611 Cisco OpenVuln