A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The vulnerability is due to insufficient input validation during the execution of a vulnerable CLI command. An attacker with administrator-level credentials could exploit this vulnerability by injecting crafted arguments during command execution. A successful exploit could allow the attacker to perform arbitrary code execution as root on an affected product.
History

Wed, 20 Nov 2024 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2019-06-20T02:40:11.959108Z

Updated: 2024-11-20T17:17:43.328Z

Reserved: 2018-12-06T00:00:00

Link: CVE-2019-1623

cve-icon Vulnrichment

Updated: 2024-08-04T18:20:28.343Z

cve-icon NVD

Status : Modified

Published: 2019-06-20T03:15:11.213

Modified: 2024-11-21T04:36:57.260

Link: CVE-2019-1623

cve-icon Redhat

No data.