PT-2012-2523 · Cisco · Cisco Srp 520W-U+2

Published

2012-02-25

Updated

2018-01-04

CVE-2012-0364

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions Cisco SRP 520 series devices versions prior to 1.1.26 Cisco SRP 520W-U and 540 series devices versions prior to 1.2.4

Description The issue allows remote attackers to replace the configuration file via an upload request to an unspecified URL.

Recommendations For Cisco SRP 520 series devices, update the firmware to version 1.1.26 or later. For Cisco SRP 520W-U and 540 series devices, update the firmware to version 1.2.4 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2012-0364

Affected Products

Cisco Srp 520 Series

Cisco Srp 520W-U

Cisco Srp 540 Series

PT-2012-2523 · Cisco · Cisco Srp 520W-U+2

CVE-2012-0364

Weakness Enumeration

Related Identifiers

Affected Products

References · 3