CVE-2010-0597

Name of the Vulnerable Software and Affected Versions Cisco Mediator Framework versions 1.5.1 before 1.5.1.build.14-eng Cisco Mediator Framework versions 2.2 before 2.2.1.dev.1 Cisco Mediator Framework versions 3.0 before 3.0.9.release.1

Description The issue allows remote authenticated users to read or modify the device configuration, gain privileges, or cause a denial of service (device reload) via XML RPC or XML RPC over HTTPS requests.

Recommendations For Cisco Mediator Framework version 1.5.1, update to 1.5.1.build.14-eng or later. For Cisco Mediator Framework version 2.2, update to 2.2.1.dev.1 or later. For Cisco Mediator Framework version 3.0, update to 3.0.9.release.1 or later.