Cisco TelePresence Video Communication Server SSL Certificate credentials management
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.7 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as critical, was found in Cisco TelePresence Video Communication Server. Affected by this vulnerability is an unknown functionality of the component SSL Certificate. Such manipulation leads to credentials management. This vulnerability is documented as CVE-2014-0675. Additionally, an exploit exists. You should upgrade the affected component.
Details
A vulnerability was found in Cisco TelePresence Video Communication Server (Unified Communication Software) (affected version not known) and classified as critical. Affected by this issue is some unknown functionality of the component SSL Certificate. The manipulation with an unknown input leads to a credentials management vulnerability. Using CWE to declare the problem leads to CWE-255. Impacted is confidentiality, and integrity. CVE summarizes:
The Expressway component in Cisco TelePresence Video Communication Server (VCS) uses the same default X.509 certificate across different customers installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate s trust relationship, aka Bug ID CSCue07471.
The weakness was released 01/22/2014 as CSCue07471 as confirmed advisory (Website). The advisory is shared for download at tools.cisco.com. This vulnerability is handled as CVE-2014-0675 since 01/02/2014. The attack may be launched remotely. No form of authentication is required for exploitation. Technical details are unknown but a public exploit is available. The MITRE ATT&CK project declares the attack technique as T1552.
After immediately, there has been an exploit disclosed. It is declared as proof-of-concept. As 0-day the estimated underground price was around $5k-$25k. The vulnerability scanner Nessus provides a plugin with the ID 72245 , which helps to determine the existence of the flaw in a target environment. The commercial vulnerability scanner Qualys is able to test this issue with plugin 43367 (Cisco TelePresence Video Communication Server Expressway Default SSL Certificate Vulnerability).
Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (90650), Tenable (72245), SecurityFocus (BID 65101†), OSVDB (102377†) and Secunia (SA56621†). tools.cisco.com is providing further details. Entry connected to this vulnerability is available at VDB-12052. If you want to get best quality of vulnerability data, you may have to visit VulDB.
Product
Type
Vendor
Name
License
Website
- Vendor: https://www.cisco.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.5VulDB Meta Temp Score: 5.7
VulDB Base Score: 6.5
VulDB Temp Score: 5.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Credentials managementCWE: CWE-255
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Public
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 72245
Nessus File: 🔍
Nessus Risk: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Exploit Delay Time: 🔍
Timeline
01/02/2014 🔍01/22/2014 🔍
01/22/2014 🔍
01/22/2014 🔍
01/22/2014 🔍
01/22/2014 🔍
01/22/2014 🔍
01/24/2014 🔍
01/24/2014 🔍
02/01/2014 🔍
02/17/2014 🔍
12/21/2024 🔍
Sources
Vendor: cisco.comAdvisory: CSCue07471
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2014-0675 (🔍)
GCVE (CVE): GCVE-0-2014-0675
GCVE (VulDB): GCVE-100-12056
IAVM: 🔍
X-Force: 90650 - Cisco TelePresence Video Communication Server man-in-the-middle
SecurityFocus: 65101 - Cisco TelePresence Video Communication Server Expressway Man in the Middle Vulnerability
Secunia: 56621 - Cisco TelePresence Video Communication Server Default SSL Certificate Security Issue, Not Critical
OSVDB: 102377
SecurityTracker: 1029682
Vulnerability Center: 43318 - Cisco TelePresence VCS Remote Man-in-the-middle Attack Against SSL Sessions, Medium
scip Labs: https://www.scip.ch/en/?labs.20161013
Misc.: 🔍
See also: 🔍
Entry
Created: 01/24/2014 10:58Updated: 12/21/2024 06:35
Changes: 01/24/2014 10:58 (80), 05/21/2017 14:08 (1), 06/08/2021 15:39 (3), 06/08/2021 15:46 (1), 12/21/2024 06:35 (16)
Complete: 🔍
Cache ID: 216:396:103
No comments yet. Languages: en.
Please log in to comment.