CVE-2012-0329

Published Jan 19, 2012

Last updated a month ago

CVSS info 9.0

Overview

Description: Cisco Digital Media Manager 5.2.2 and earlier, and 5.2.3, allows remote authenticated users to execute arbitrary code via vectors involving a URL and an administrative resource, aka Bug ID CSCts63878.
Source: psirt@cisco.com
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 9
Impact score: 10
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-94

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D608FED-9711-4E2A-B30B-5680085E5B6D",
            "versionEndIncluding": "5.2.2"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E38F84C-8BEE-48CB-B2D0-9786EE71BF3E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:3.5\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19A6ED5C-A776-4549-A891-C3A85C4C8499"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53AE1EC1-50FA-44D9-914E-7FF54DFFFC20"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:4.1\\(0\\)40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2518BE46-E94A-47CE-96D2-1D1B7065D6E0"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98D3AF9D-2540-4E49-923D-98683F0404BD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2515E7AA-03E8-4DD1-B19E-105604BD9F92"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BADC9AB-BEFA-480F-A4D2-0C8CFE837C4F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2BB2DB16-8394-4705-AB81-9CE1F005DE58"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C93B19E1-1433-48B3-B54A-D924B173F48E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A329F7E-7D3F-464B-B9D1-15781DCFEC03"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.2.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3DF3C19-DE9C-4218-9A1A-AEE49495BFFB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:digital_media_manager:5.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66B8248F-6993-4AF5-B6ED-CC66FB571BDB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References