1. Home
  2. CVE Database
  3. CVE-2010-3038
HIGH · 10.0

CVE-2010-3038

Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier fo...

Vulnerability Description

Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier for remote attackers to obtain access via the (a) FTP or (b) SSH daemon, aka Bug ID CSCti54008.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoUnified Videoconferencing System 5110 Firmware7.0.1.13.3
CiscoUnified Videoconferencing System 5115 Firmware7.0.1.13.3
CiscoUnified Videoconferencing System 5110All versions
CiscoUnified Videoconferencing System 5115All versions
LinuxLinux KernelAll versions

Related Weaknesses (CWE)

CWE-255

References

FAQ

What is CVE-2010-3038?

CVE-2010-3038 is a vulnerability with a CVSS score of 10.0 (HIGH). Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier fo...

How severe is CVE-2010-3038?

CVE-2010-3038 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-3038?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Videoconferencing System 5110 Firmware, Cisco Unified Videoconferencing System 5115 Firmware, Cisco Unified Videoconferencing System 5110, Cisco Unified Videoconferencing System 5115, Linux Linux Kernel.