CVE-2013-3454

Published Aug 8, 2013
Last updated a month ago
CVSS info 10.0
Overview

Description: Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00 devices, has a default password for the pwrecovery account, which makes it easier for remote attackers to modify the configuration or perform arbitrary actions via HTTPS requests, aka Bug ID CSCui43128.
Source: psirt@cisco.com
NVD status: Deferred
Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses

nvd@nist.gov: CWE-255
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_tx9000:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "911B3EBA-5640-458A-B18A-FAC1309F37FB"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_tx9200:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DCEB3C5-6C28-4D91-900E-98F0DC02478E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "39E38912-F6E7-41F9-B113-C1B27AEF455F",
            "versionEndIncluding": "6.0.3\\(33\\)"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.0\\(46\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34508470-64C3-4A99-BBB0-169AFA3BE50B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.0.1\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09D6BB57-FB29-4DBD-9974-7DE67695A416"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.1\\(68\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6570B01-07EB-425B-91E7-70517889A462"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BE52CFC-2DE3-4780-9471-BA2390070C78"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.2\\(19\\):*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "68710E69-4FD8-4FED-9D7B-CE7317982E2F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68884D7C-6F29-4435-8904-C684959C9D4D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.3\\(44\\):*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "00737930-5F3C-4274-9633-00B3837ED6BC"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52DDA787-1F51-415A-BF59-B9EAAE69EA2A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.4\\(19\\):*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "995E5365-B6C3-4A4A-9F14-EADD27C8B9B8"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BABEE2DD-7C86-4BD0-9928-DC370D3F786B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.5\\(7\\):*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "20831FBF-99C9-4B02-A577-6D28CC2983DD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79C69EA5-F5D2-4DC7-BE08-F0CBA967A249"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.6\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "34600183-7CCF-4424-8887-8EC9ADD1B09E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:6.0.0.1\\(4\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C315F74-11D0-42EF-84F7-A9747A8C03E1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:6.0.1\\(50\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18516CB9-5EE8-4CC3-ACC3-6A0DF29D1D4B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:6.0.2\\(28\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A03B63BB-9DE1-41F9-A993-8295C368F611"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35078524-0E13-4FDD-B6A1-8D8DDDD394B6",
            "versionEndIncluding": "1.10.1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5EAB196-F648-42F7-9621-9D43FA9288C1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.2.3\\(1101\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12193063-0545-402F-87E6-61023184F5EE"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFE7BB6D-16FF-4141-93A1-1B4EB7C1D46C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.3.2\\(1393\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90D72D8E-0826-4716-A2EE-B934150EC5F1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31487AA7-257C-4216-B5E5-6244FF06D00A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.4.7\\(2229\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "494F0584-197E-4892-BD58-B574DBD090FD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4062C260-C7B5-40E4-B77E-5AC1BFDB303D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.1\\(2082\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEAF862B-43D6-42A2-B710-ED803906F251"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B9FF632-4F67-4D04-A7D9-FDDF24E22541"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.3\\(2115\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FA3E247-E67F-4237-AF71-FEB0528EC35F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27ECF70E-A6FE-4277-B02A-F0551271446B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.10\\(3648\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C68D879E-4522-4069-84B7-ED7C511B9D05"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68CC9A38-CA82-4558-BC92-0433301570E9"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.11\\(3659\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C97CD7F-1ED4-4F44-BC53-5CC3871915B4"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F74C1145-E2DC-41A5-ADD8-282332124C8A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.12\\(3701\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45A3BE96-E4F8-4362-A18E-0EBCF4D65490"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1CB7370-5367-4C3E-9B0E-88A29E1E8704"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.5.13\\(3717\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "679CFA7C-60D4-4369-905F-B52DCD321603"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6456B65-FE0C-4133-BADD-2B3872855348"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.0\\(3954\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90C4668B-CB7C-44EB-B352-DED7C252EAD6"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FBF8BE7-C77D-4259-9AC7-FF8987AFCD60"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB5F71BC-9BFB-4CD5-A742-59128D92416F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.2\\(4023\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6BDB4EBF-C8A1-4CE6-B377-C09983BF3A21"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E31F77A6-9FF8-4B23-B6B6-6AC349F09188"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.3\\(4042\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "43DAFA6C-2A25-499D-B11B-801F9031F2A5"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30601D29-8C6A-463D-9DFC-4C3384943605"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.4\\(4072\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "456BF22C-3010-451F-853F-C46E94E954D2"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81650747-4FA7-4EBA-8DB5-DF267FC0429F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.5\\(4097\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4A64D44-EC08-4601-93AC-6C02A4412D8C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20179515-AFBB-4A21-B6FE-F9E7201ECC9A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.6\\(4109\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "090FA16C-ABF2-4464-8219-D7A8917A7ECC"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A972EC60-951B-496C-963B-9A073B587659"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.7\\(4212\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "774A9C95-8111-425B-A411-26F614384135"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB269620-5DE5-4D07-8D80-45A52C71E3D2"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.6.8\\(4222\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6D1A003-6593-4934-8518-CC40F3F8ACE3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.0.1\\(4764\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B98FCCA-923C-4501-9B06-70CB3731F49A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.0.2\\(4719\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29E0E9FC-EF3F-470A-93A4-CC9C7A71F6EC"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.1\\(4864\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1AE77C52-E526-4B48-8EFA-5F5C59956308"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.2\\(4937\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF620174-5C3E-43AF-8AEB-B9DD87F8C451"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.2.1\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "315EDAEC-3C60-445A-9613-23D38E8C2873"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.4\\(270\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "551E171E-973F-47A5-8A7F-70062E76E9CD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.5\\(42\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "43DB9A3E-F495-4D22-874F-DDFB73C07534"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.7.6\\(4\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2177AF2B-BF5C-431C-8899-88ECC4E91BC4"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.8.0\\(55\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2DBBADC-6367-4F75-9F58-E42A05AC992C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.8.1\\(34\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFEAB6C5-3B65-42D0-B597-0322D9F57C82"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.8.2\\(11\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD609D6C-0DA9-4D5F-B2F0-88BCAFCB7959"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.8.3\\(4\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62CBB917-651A-4EB8-842D-0BEA708A1BFB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.0\\(46\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34508470-64C3-4A99-BBB0-169AFA3BE50B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.0.1\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09D6BB57-FB29-4DBD-9974-7DE67695A416"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.1\\(68\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6570B01-07EB-425B-91E7-70517889A462"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BE52CFC-2DE3-4780-9471-BA2390070C78"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68884D7C-6F29-4435-8904-C684959C9D4D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52DDA787-1F51-415A-BF59-B9EAAE69EA2A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BABEE2DD-7C86-4BD0-9928-DC370D3F786B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.9.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79C69EA5-F5D2-4DC7-BE08-F0CBA967A249"
          },
          {
            "criteria": "cpe:2.3:a:cisco:telepresence_system_software:1.10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4E70952-7132-4F2B-932F-56FAD2A89A96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_1300:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3094537-1152-4E51-A0C0-798A760A884A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_1300-65:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63DF9134-97F0-4E13-ADB8-C40D67681EAA"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_3000:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC14CB1A-DE5C-4877-8FFB-DF2FA1ADE176"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_3010:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EF6B03F-670A-4604-8B4F-1F05B146E36A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_3200:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC220DAD-E967-4CC5-9C13-6A5AE98D79EF"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_3210:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A13ACECA-121B-4D77-AB54-F579CF67098B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_500-32:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E530C9D1-8ACD-4B32-A96D-60E94916A872"
          },
          {
            "criteria": "cpe:2.3:h:cisco:telepresence_system_500-37:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16C8B085-E37B-4440-9DAD-EA1702D79A5E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
References

Sources include official advisories and independent security research.
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
