CVE-2011-0354

Published Feb 3, 2011

Last updated 3 months ago

CVSS info 10.0

Overview

Description: The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4.0.0 has a blank password for the root account, which makes it easier for remote attackers to obtain access via an unspecified login method.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-255

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_endpoint:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A87B81CF-6847-4F05-824B-0D1466B7C9A6",
            "versionEndIncluding": "tc3.1.3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_endpoint:tc2.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B45456C-8D42-4C7F-B575-1A7DDBA237F5"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_endpoint:tc3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "029C0FEE-74CA-4E7E-B1F2-9DBDB67372BD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_endpoint:tc3.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA83FF69-F265-4DD6-8195-A9C907B40DA1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_endpoint:tc3.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C0562C3-F681-4D89-9076-54F007A691E6"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_endpoint:tc3.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94D6F6FD-3C4D-4D26-B5E4-AB229C8A0CD5"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:tandberg_endpoint:c20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61F895B7-8F8D-4469-ABFC-CCE146A24DBA"
          },
          {
            "criteria": "cpe:2.3:h:cisco:tandberg_endpoint:c40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3DB4373E-2E5B-433E-8FDB-602373A5F21E"
          },
          {
            "criteria": "cpe:2.3:h:cisco:tandberg_endpoint:c60:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E96385EC-31F4-4CC9-854A-0A5F7F8DBA20"
          },
          {
            "criteria": "cpe:2.3:h:cisco:tandberg_endpoint:c90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94515F99-3636-411C-ACAB-330F12E89722"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F97F04E1-CC50-4E82-927E-5B408249A8C2",
            "versionEndIncluding": "tc3.1.3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:tc3.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA17CDAB-6DB2-4C08-887E-8E4BEA5BC489"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:tc3.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6055257E-12D7-4091-9E58-CAE791390225"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:tc3.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31AB455A-C4E2-4872-B95D-025B4AB9686F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:tandberg_personal_video_unit:ex90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84116DE1-6669-46E8-BA25-BA43FAF6A4A2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF91C5C8-FF37-4452-AA35-1EC458DFCF12",
            "versionEndIncluding": "te2.2.1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:te1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5AFD63E-784E-432E-9E42-ADDACCBAF095"
          },
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:te2.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD5A756A-E58E-41C9-B001-D0E39F8F513E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:tandberg_personal_video_unit:e20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77BC6923-BC31-4DEB-92C8-4FFEA26BA2E9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:tandberg_personal_video_unit_software:tc3.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31AB455A-C4E2-4872-B95D-025B4AB9686F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:tandberg_personal_video_unit:ex60:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EFB7F8EA-7F3C-4B42-BDCC-213EAA9DC44B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References