Vulnerability Details : CVE-2010-0572
Cisco Digital Media Manager (DMM) before 5.2 allows remote authenticated users to discover Cisco Digital Media Player credentials via vectors related to reading a (1) error log or (2) stack trace, aka Bug ID CSCtc46050.
Vulnerability category: Information leak
Products affected by CVE-2010-0572
- cpe:2.3:a:cisco:digital_media_manager:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:digital_media_manager:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:digital_media_manager:5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:digital_media_manager:5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:digital_media_manager:5.0.3:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2010-0572
0.45%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 72 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0572
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.1
|
HIGH | AV:N/AC:H/Au:S/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2010-0572
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-0572
-
http://securitytracker.com/id?1023671
Cisco Digital Media Manager Lets Remote Users Access the System and Remote Authenticated Users Modify the Configuration and View Passwords - SecurityTracker
-
http://www.securityfocus.com/bid/38502
Cisco Digital Media Manager Information Disclosure Vulnerability
-
http://www.vupen.com/english/advisories/2010/0531
Webmail | OVH- OVH
-
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1b923.shtml
Multiple Vulnerabilities in Cisco Digital Media Manager - CiscoPatch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/56637
Cisco Digital Media Manager Digital Media Player information disclosure CVE-2010-0572 Vulnerability Report
Jump to