PT-2020-14769 · Cisco · Cisco Unified Ip Conference Station 7937G
Published
2020-08-10
·
Updated
2024-08-04
·
CVE-2020-16137
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Cisco Unified IP Conference Station 7937G versions 1-4-4-0 through 1-4-5-7
Description
A privilege escalation issue allows attackers to reset the credentials for the SSH administrative console to arbitrary values. The product is end of life and users are advised to remove or upgrade it.
Recommendations
For versions 1-4-4-0 through 1-4-5-7, remove or upgrade the product to mitigate the issue. As a temporary workaround, consider restricting access to the SSH administrative console until the product can be removed or upgraded.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cisco Unified Ip Conference Station 7937G