VDB
CVE-2011-2762
CVE-2011-2762
PUBLISHED
CVSS 5 MEDIUM
The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF data and the LSRoom_Remoting.authenticate function in gateway.php.
EPSS 0.83% · 75.0th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
0.83%
75.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| lifesize | lifesize_room_appliance_software | ls_rm1_3.5.3 |
Timeline
- Aug 26, 2011 CVE Published
- Aug 26, 2011 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 14, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 49330 vdb
- lifesize-room-security-bypass(69445) vdb
- 20110828 LifeSize Room Vulnerabilities mailing-list
- VU#213486 third-party-advisory
- 8364 third-party-advisory
- http://www.securestate.com/Documents/LifeSize_Room_Advisory.txt url
- https://nvd.nist.gov/vuln/detail/CVE-2011-2762 advisory