Vulnerability Details : CVE-2013-1111
The Cisco ATA 187 Analog Telephone Adaptor with firmware 9.2.1.0 and 9.2.3.1 before ES build 4 does not properly implement access control, which allows remote attackers to execute operating-system commands via vectors involving a session on TCP port 7870, aka Bug ID CSCtz67038.
Products affected by CVE-2013-1111
- cpe:2.3:o:cisco:ata_187_analog_telephone_adaptor_firmware:9.2.1.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ata_187_analog_telephone_adaptor_firmware:9.2.3.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:ata_187_analog_telephone_adaptor:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-1111
0.41%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 74 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-1111
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
9.0
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:C |
10.0
|
8.5
|
NIST |
CWE ids for CVE-2013-1111
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-1111
-
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130206-ata187
Cisco ATA 187 Analog Telephone Adaptor Remote Access VulnerabilityVendor Advisory
Jump to