Cisco TelePresence Software before TE 4.1.1 on the Cisco IP Video Phone E20 has a default password for the root account after an upgrade to TE 4.1.0, which makes it easier for remote attackers to modify the configuration via an SSH session, aka Bug ID CSCtw69889, a different vulnerability than CVE-2011-2555.
AV:N/AC:L/Au:N/C:C/I:C/A:CCisco Ip Video Phone E20
HWCiscowszystkie wersjeCisco Telepresence E20 Software
APPCiscote2.2te2.2.1te4.0.0te4.1.0te4.1.1tenc4.0.0tenc4.1.0tenc4.1.1tenc4.1.1-cucm≤ te4.1.1-cucm
Related vulnerabilities
Cisco TelePresence TC Software before 5.1.7 and TE Software before 4.1.3 allow remote attackers to cause a den...
Unspecified vulnerability in Cisco TelePresence C Series Endpoints, E/EX Personal Video units, and MXP Series ...
Cisco Catalyst SD-WAN — pominięcie uwierzytelnienia z dostępem administracyjnym
RCE przez insecure deserialization w Cisco Secure Firewall Management Center
Cisco Catalyst SD-WAN — ominięcie uwierzytelnienia peering i przejęcie uprawnień