CVE-2015-0611 - OpenCVE

The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote authenticated users to obtain HelpDesk-equivalent privileges by leveraging device-recovery authentication, aka Bug ID CSCus74174.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:S/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Telepresence Ix5000 Telepresence Ix5200 Telepresence System Software Ix

Configuration 1 [-]

AND

OR	cpe:2.3:o:cisco:telepresence_system_software_ix:8.0.0:::::::*
	cpe:2.3:o:cisco:telepresence_system_software_ix:8.0.1:::::::*

OR	cpe:2.3:h:cisco:telepresence_ix5000::::::::
	cpe:2.3:h:cisco:telepresence_ix5200::::::::

No data.

References

Link	Providers
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0611
http://tools.cisco.com/security/center/viewAlert.x?alertId=37430
http://www.securityfocus.com/bid/72568
http://www.securitytracker.com/id/1031733
https://exchange.xforce.ibmcloud.com/vulnerabilities/100806

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2015-02-12T01:00:00

Updated: 2024-08-06T04:17:32.593Z

Reserved: 2015-01-07T00:00:00

Link: CVE-2015-0611

Vulnrichment

No data.

NVD

Status : Modified

Published: 2015-02-12T01:59:27.187

Modified: 2017-09-08T01:29:46.387

Link: CVE-2015-0611

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-02-10T00:00:00", "descriptions": [{"lang": "en", "value": "The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote authenticated users to obtain HelpDesk-equivalent privileges by leveraging device-recovery authentication, aka Bug ID CSCus74174."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-07T15:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "72568", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/72568"}, {"name": "20150210 Cisco TelePresence IX5000 Series Web Management Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0611"}, {"name": "cisco-cve20150611-priv-esc(100806)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100806"}, {"name": "1031733", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1031733"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=37430"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2015-0611", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote authenticated users to obtain HelpDesk-equivalent privileges by leveraging device-recovery authentication, aka Bug ID CSCus74174."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "72568", "refsource": "BID", "url": "http://www.securityfocus.com/bid/72568"}, {"name": "20150210 Cisco TelePresence IX5000 Series Web Management Vulnerability", "refsource": "CISCO", "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0611"}, {"name": "cisco-cve20150611-priv-esc(100806)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100806"}, {"name": "1031733", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1031733"}, {"name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=37430", "refsource": "CONFIRM", "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=37430"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T04:17:32.593Z"}, "title": "CVE Program Container", "references": [{"name": "72568", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/72568"}, {"name": "20150210 Cisco TelePresence IX5000 Series Web Management Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0611"}, {"name": "cisco-cve20150611-priv-esc(100806)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100806"}, {"name": "1031733", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1031733"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=37430"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2015-0611", "datePublished": "2015-02-12T01:00:00", "dateReserved": "2015-01-07T00:00:00", "dateUpdated": "2024-08-06T04:17:32.593Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:telepresence_system_software_ix:8.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "D04D3349-47F1-48D4-8A76-FBD962208384", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:telepresence_system_software_ix:8.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "54BA1F2A-E914-4F20-BD44-294912566873", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:telepresence_ix5000:*:*:*:*:*:*:*:*", "matchCriteriaId": "65F8BD79-5FAB-4CBF-A698-69067403D6DA", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:telepresence_ix5200:*:*:*:*:*:*:*:*", "matchCriteriaId": "8A36732D-4A16-438B-9D3D-2ADE3B0DA4D4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote authenticated users to obtain HelpDesk-equivalent privileges by leveraging device-recovery authentication, aka Bug ID CSCus74174."}, {"lang": "es", "value": "El portal de la gesti\u00f3n del web administrativo en Cisco IX 8 (.0.1) y anteriores en los dispositivos Cisco TelePresence IX5000 no restringe correctamente el acceso a la cuenta de la recuperaci\u00f3n de dispositivos, lo que permite a usuarios remotos autenticados obtener privilegios equivalentes a HelpDesk mediante el aprovechamiento de la autenticaci\u00f3n de la recuperaci\u00f3n de dispositivos, tambi\u00e9n conocido como Bug ID CSCus74174."}], "id": "CVE-2015-0611", "lastModified": "2017-09-08T01:29:46.387", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-02-12T01:59:27.187", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0611"}, {"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=37430"}, {"source": "ykramarz@cisco.com", "url": "http://www.securityfocus.com/bid/72568"}, {"source": "ykramarz@cisco.com", "url": "http://www.securitytracker.com/id/1031733"}, {"source": "ykramarz@cisco.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100806"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}