Default Password Exposure in Cisco Digital Media Manager 5.x
CVE-2010-0570

Currently unrated

Key Information:

Vendor: Cisco
Status: Digital Media Manager
Vendor: CVE Published:; 5 March 2010

Summary

Cisco Digital Media Manager (DMM) versions 5.0.x and 5.1.x contain a critical vulnerability due to the presence of a default password for the Tomcat administration account. This security flaw enables remote attackers to exploit crafted web applications, potentially executing arbitrary code. Organizations using these versions are advised to change the default credentials immediately to mitigate potential risks.

References

http://securitytracker.com/id?1023671

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/38800

third-party-advisoryx_refsource_SECUNIA

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 5, 2010
Vulnerability Reserved
Feb 10, 2010