1. Home
  2. CVE Database
  3. CVE-2013-1111
HIGH · 9.0

CVE-2013-1111

The Cisco ATA 187 Analog Telephone Adaptor with firmware 9.2.1.0 and 9.2.3.1 before ES build 4 does not properly implement access control, which allows remote attackers to execute operating-system com...

Vulnerability Description

The Cisco ATA 187 Analog Telephone Adaptor with firmware 9.2.1.0 and 9.2.3.1 before ES build 4 does not properly implement access control, which allows remote attackers to execute operating-system commands via vectors involving a session on TCP port 7870, aka Bug ID CSCtz67038.

CVSS Score

9.0

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:C
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoAta 187 Analog Telephone Adaptor Firmware9.2.1.0
CiscoAta 187 Analog Telephone Adaptor-

Related Weaknesses (CWE)

CWE-264

References

FAQ

What is CVE-2013-1111?

CVE-2013-1111 is a vulnerability with a CVSS score of 9.0 (HIGH). The Cisco ATA 187 Analog Telephone Adaptor with firmware 9.2.1.0 and 9.2.3.1 before ES build 4 does not properly implement access control, which allows remote attackers to execute operating-system com...

How severe is CVE-2013-1111?

CVE-2013-1111 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-1111?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ata 187 Analog Telephone Adaptor Firmware, Cisco Ata 187 Analog Telephone Adaptor.