CVE-2010-0595 — HIGH (10.0)

Vulnerability Description

Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Mediator 2500 has a default password for the administrative user account and unspecified other accounts, which makes it easier for remote attackers to obtain privileged access, aka Bug ID CSCtb83495.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Cisco	Mediator Framework	1.5.1
Cisco	Network Building Mediator Nbm-2400	All versions
Cisco	Network Building Mediator Nbm-4800	All versions
Cisco	Richards-Zeta Mediator 2500	All versions

Related Weaknesses (CWE)

CWE-255

References

FAQ

What is CVE-2010-0595?

CVE-2010-0595 is a vulnerability with a CVSS score of 10.0 (HIGH). Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Medi...

How severe is CVE-2010-0595?

CVE-2010-0595 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-0595?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Mediator Framework, Cisco Network Building Mediator Nbm-2400, Cisco Network Building Mediator Nbm-4800, Cisco Richards-Zeta Mediator 2500.