CVE-2010-3038

{"id": "CVE-2010-3038", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-11-22T20:00:03.230", "references": [{"url": "http://seclists.org/fulldisclosure/2010/Nov/167", "source": "ykramarz@cisco.com"}, {"url": "http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securityfocus.com/bid/44924", "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id?1024753", "source": "ykramarz@cisco.com"}, {"url": "http://www.trustmatta.com/advisories/MATTA-2010-001.txt", "source": "ykramarz@cisco.com"}, {"url": "http://seclists.org/fulldisclosure/2010/Nov/167", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/44924", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1024753", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.trustmatta.com/advisories/MATTA-2010-001.txt", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-255"}]}], "descriptions": [{"lang": "en", "value": "Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier for remote attackers to obtain access via the (a) FTP or (b) SSH daemon, aka Bug ID CSCti54008."}, {"lang": "es", "value": "Cisco Unified Videoconferencing (UVC) System 5110 y 5115, cuando el sistema operativo Linux se usa, tiene una contrase\u00f1a por defecto para (1) root, (2) cs, y (3) cuentas de desarrollo, lo que hace m\u00e1s sencillo para atacantes remotos obtener acceso a trav\u00e9s de (a) FTP o, (b) demonio SSH, tambi\u00e9n conocido como Bug ID CSCti54008."}], "lastModified": "2024-11-21T01:17:55.370", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unified_videoconferencing_system_5110_firmware:7.0.1.13.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FCDF0DD6-EF3E-4758-A715-1814EA7D603D"}, {"criteria": "cpe:2.3:a:cisco:unified_videoconferencing_system_5115_firmware:7.0.1.13.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "619E7A89-B6B3-4E3B-BB63-5B142920984B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:unified_videoconferencing_system_5110:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "45DF769C-376D-4D65-B36E-E0F19BD7C8D0"}, {"criteria": "cpe:2.3:h:cisco:unified_videoconferencing_system_5115:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "615E1C8A-DC4D-40B4-BF9F-E218469E9749"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}