VAR-201505-0334
Vulnerability from variot - Updated: 2023-12-18 12:51Cisco TelePresence T, TelePresence TE, and TelePresence TC before 7.1 do not properly implement access control, which allows remote attackers to obtain root privileges by sending packets on the local network and allows physically proximate attackers to obtain root privileges via unspecified vectors, aka Bug ID CSCub67651. Vendors have confirmed this vulnerability Bug ID CSCub67651 It is released as. Supplementary information : CWE Vulnerability type by CWE-284: Improper Access Control ( Inappropriate access control ) Has been identified. http://cwe.mitre.org/data/definitions/284.htmlBy sending packets to the local network by a third party, root By an authorized attacker and physically able to control the device, root You may get permission. An attacker can exploit this issue to bypass the authentication mechanism and gain unauthorized access. This may lead to further attacks. Cisco TelePresence is a set of video conferencing solutions called "TelePresence" system of Cisco (Cisco). TC and so on are the terminal software
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201505-0334",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "4.2.1"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "6.3.0"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "4.2.3"
},
{
"model": "telepresence te software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "6.0.2"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "4.2.2"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "4.1.2"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "4.2.0"
},
{
"model": "telepresence te software",
"scope": "eq",
"trust": 1.9,
"vendor": "cisco",
"version": "6.0.1"
},
{
"model": "telepresence te software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "6.0.0"
},
{
"model": "telepresence te software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "6.0_base"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "6.0.0"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "6.0.2"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "5.1.4"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "6.1.2"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "4.1.1"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "5.1.6"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "3.1.5"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "5.1.7"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "5.1.3"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "6.0.1"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "5.0.2"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "5.1.5"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "4.2.4"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.3,
"vendor": "cisco",
"version": "6.1.1"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.1.7-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.1.0"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.2_base"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1.0"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0.2-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.1.5-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.0_base"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.1.4-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.1.1-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0.0-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0.1-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.1_base"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.1.0-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.1.6-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.1_base"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1_base"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "5.1.3-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.1.2-cucm"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "6.0_base"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.1_base"
},
{
"model": "telepresence tc software",
"scope": "lt",
"trust": 0.8,
"vendor": "cisco",
"version": "7.1"
},
{
"model": "telepresence te software",
"scope": "lt",
"trust": 0.8,
"vendor": "cisco",
"version": "7.1"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "5.0"
},
{
"model": "telepresence tc software 6.0.1-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software 6.1.2-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.1"
},
{
"model": "telepresence tc software 6.1.1-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.1"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "6.0"
},
{
"model": "telepresence tc software 5.1.4-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software 5.0.2-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software 5.1.3-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software 6.1.0-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "7.3.2"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.2"
},
{
"model": "telepresence tc software 5.1.6-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence te software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "6.0"
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "6.1"
},
{
"model": "telepresence tc software 5.1.7-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "5.1"
},
{
"model": "telepresence tc software 6.0.0-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "telepresence tc software 5.1.5-cucm",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
}
],
"sources": [
{
"db": "BID",
"id": "74639"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.1_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.0.0-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.0.1-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.1.1-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.1.2-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.2.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.0.2-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.1.0-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_te_software:6.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_te_software:6.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_te_software:6.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:3.1_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.2_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.0_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.6-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.7-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.1.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.0_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:3.1.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.3-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.4-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:5.1.5-cucm:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:6.1.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.1_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_tc_software:4.2.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:telepresence_te_software:6.0_base:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2014-2174"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco",
"sources": [
{
"db": "BID",
"id": "74639"
}
],
"trust": 0.3
},
"cve": "CVE-2014-2174",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": true,
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 6.5,
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Adjacent Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 8.3,
"confidentialityImpact": "Complete",
"exploitabilityScore": null,
"id": "CVE-2014-2174",
"impactScore": null,
"integrityImpact": "Complete",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 6.5,
"id": "VHN-70113",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:A/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2014-2174",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201505-240",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-70113",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2014-2174",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-70113"
},
{
"db": "VULMON",
"id": "CVE-2014-2174"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco TelePresence T, TelePresence TE, and TelePresence TC before 7.1 do not properly implement access control, which allows remote attackers to obtain root privileges by sending packets on the local network and allows physically proximate attackers to obtain root privileges via unspecified vectors, aka Bug ID CSCub67651. Vendors have confirmed this vulnerability Bug ID CSCub67651 It is released as. Supplementary information : CWE Vulnerability type by CWE-284: Improper Access Control ( Inappropriate access control ) Has been identified. http://cwe.mitre.org/data/definitions/284.htmlBy sending packets to the local network by a third party, root By an authorized attacker and physically able to control the device, root You may get permission. \nAn attacker can exploit this issue to bypass the authentication mechanism and gain unauthorized access. This may lead to further attacks. Cisco TelePresence is a set of video conferencing solutions called \"TelePresence\" system of Cisco (Cisco). TC and so on are the terminal software",
"sources": [
{
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"db": "BID",
"id": "74639"
},
{
"db": "VULHUB",
"id": "VHN-70113"
},
{
"db": "VULMON",
"id": "CVE-2014-2174"
}
],
"trust": 2.07
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2014-2174",
"trust": 2.9
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201505-240",
"trust": 0.7
},
{
"db": "SECUNIA",
"id": "64495",
"trust": 0.6
},
{
"db": "BID",
"id": "74639",
"trust": 0.4
},
{
"db": "VULHUB",
"id": "VHN-70113",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2014-2174",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-70113"
},
{
"db": "VULMON",
"id": "CVE-2014-2174"
},
{
"db": "BID",
"id": "74639"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
]
},
"id": "VAR-201505-0334",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-70113"
}
],
"trust": 0.01
},
"last_update_date": "2023-12-18T12:51:42.476000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20150513-tc",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150513-tc"
},
{
"title": "38719",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=38719"
},
{
"title": "cisco-sa-20150513-tc",
"trust": 0.8,
"url": "http://www.cisco.com/cisco/web/support/jp/112/1129/1129379_cisco-sa-20150513-tc-j.html"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-284",
"trust": 1.1
},
{
"problemtype": "CWE-Other",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-70113"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"db": "NVD",
"id": "CVE-2014-2174"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.1,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150513-tc"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-2174"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-2174"
},
{
"trust": 0.6,
"url": "http://secunia.com/advisories/64495"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
},
{
"trust": 0.3,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=38719"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/284.html"
},
{
"trust": 0.1,
"url": "https://www.rapid7.com/db/vulnerabilities/cisco-telepresence-cve-2014-2174"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-70113"
},
{
"db": "VULMON",
"id": "CVE-2014-2174"
},
{
"db": "BID",
"id": "74639"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-70113"
},
{
"db": "VULMON",
"id": "CVE-2014-2174"
},
{
"db": "BID",
"id": "74639"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-05-25T00:00:00",
"db": "VULHUB",
"id": "VHN-70113"
},
{
"date": "2015-05-25T00:00:00",
"db": "VULMON",
"id": "CVE-2014-2174"
},
{
"date": "2015-05-13T00:00:00",
"db": "BID",
"id": "74639"
},
{
"date": "2015-05-27T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"date": "2015-05-25T00:59:00.073000",
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"date": "2015-05-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-05-26T00:00:00",
"db": "VULHUB",
"id": "VHN-70113"
},
{
"date": "2015-05-26T00:00:00",
"db": "VULMON",
"id": "CVE-2014-2174"
},
{
"date": "2015-05-13T00:00:00",
"db": "BID",
"id": "74639"
},
{
"date": "2015-05-27T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2014-008062"
},
{
"date": "2015-05-26T17:54:23.977000",
"db": "NVD",
"id": "CVE-2014-2174"
},
{
"date": "2015-05-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "specific network environment",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201505-240"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural Cisco TelePresence In product root Privileged vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2014-008062"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Access Validation Error",
"sources": [
{
"db": "BID",
"id": "74639"
}
],
"trust": 0.3
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…