VDB
CVE-2014-0661
CVE-2014-0661
PUBLISHED
CVSS 8.300000190734863 HIGH
The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote attackers to execute arbitrary commands or cause a denial of service (stack memory corruption) via a crafted XML-RPC message, aka Bug ID CSCui32796.
EPSS 4.04% · 88.7th percentile
Risk Scores
CVSS 2.0
8.300000190734863
EPSS Score
4.04%
88.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | telepresence_system_1100 | |
| cisco | telepresence_system_1300-65 | |
| cisco | telepresence_system_3000 | |
| cisco | telepresence_system_software | 1.9.6\(2\), 1.9.6.1\(3\), 1.10.0 |
| cisco | telepresence_system_3010 | |
| cisco | telepresence_system_tx1310_65 | |
| cisco | telepresence_system_500-37 | |
| cisco | telepresence_system_500-32 | |
| cisco | telepresence_system_tx9200 | |
| n/a | n/a | * |
| cisco | telepresence_system_1000 | |
| cisco | telepresence_system_tx9000 | |
| cisco | telepresence_system_3200 | |
| cisco | telepresence_system_3210 | |
| cisco | telepresence_system_tx1300_47 |
Exploit Intelligence
- 102362 (circl)
- 20140122 Cisco TelePresence System Software Command Execution Vulnerability (circl)
- cisco-telepresence-cve20140661-command-exec(90624) (circl)
- 65071 (circl)
- 56533 (circl)
- 1029656 (circl)
Timeline
- Jan 22, 2014 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
References
- 102362 vdb
- 20140122 Cisco TelePresence System Software Command Execution Vulnerability vendor-advisory
- cisco-telepresence-cve20140661-command-exec(90624) vdb
- 65071 vdb
- 56533 third-party-advisory
- 1029656 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2014-0661 advisory