Default Password Vulnerability in Cisco IP Video Phone E20
CVE-2011-4659

Currently unrated

Key Information:

Vendor: Cisco
Status: Telepresence E20 Software; Ip Video Phone E20
Vendor: CVE Published:; 19 January 2012

Summary

The Cisco IP Video Phone E20 is impacted by a vulnerability in the Cisco TelePresence Software that utilizes a default password for the root account after upgrading to TE 4.1.0. This flaw poses a significant risk as it allows remote attackers to gain unauthorized access and modify device configurations through an SSH session, potentially compromising the system's integrity. The vulnerability is documented under Bug ID CSCtw69889.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 19, 2012