MEDIUMβœ“ PATCHπŸ‡΅πŸ‡± Wersja polska

CVE-2019-12622

CVSS 5.5v3.1pub. 2019-08-21upd. 2024-11-21

A vulnerability in Cisco RoomOS Software could allow an authenticated, local attacker to write files to the underlying filesystem with root privileges. The vulnerability is due to insufficient permission restrictions on a specific process. An attacker could exploit this vulnerability by logging in to an affected device with remote support credentials and initiating the specific process on the device and sending crafted data to that process. A successful exploit could allow the attacker to write files to the underlying file system with root privileges.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
  • Cisco Roomos

    OS
    Cisco
    ≀ 9.7.2< 9.8.0
  • Cisco Telepresence Codec C40

    HW
    Cisco
    wszystkie wersje
  • Cisco Telepresence Codec C40 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Telepresence Codec C60

    HW
    Cisco
    wszystkie wersje
  • Cisco Telepresence Codec C60 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Telepresence Codec C90

    HW
    Cisco
    wszystkie wersje
  • Cisco Telepresence Codec C90 Firmware

    OS
    Cisco
    wszystkie wersje
🟒
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2022-20783HIGH7.5ten sam produkt

A vulnerability in the packet processing functionality of Cisco TelePresence Collaboration Endpoint (CE) Softw...

CVE-2019-15289HIGH7.5ten sam produkt

Multiple vulnerabilities in the video service of Cisco TelePresence Collaboration Endpoint (CE) and Cisco Room...

CVE-2020-3143HIGH7.2ten sam produkt

A vulnerability in the video endpoint API (xAPI) of Cisco TelePresence Collaboration Endpoint (CE) Software, C...

CVE-2020-3336HIGH7.2ten sam produkt

A vulnerability in the software upgrade process of Cisco TelePresence Collaboration Endpoint Software and Cisc...

CVE-2020-3155HIGH7.4ten sam produkt

A vulnerability in the SSL implementation of the Cisco Intelligent Proximity solution could allow an unauthent...

CVE-2019-12622 β€” Cisco β€” Roomos β€” MEDIUM β€” CVSS 5.5 | CVEbaza.pl