OS Command Injection in Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS - CVE-2020-3336

 

OS Command Injection in Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS - CVE-2020-3336

Published: June 25, 2020


Vulnerability identifier: #VU29251
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-3336
CWE-ID: CWE-78
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: Cisco Systems, Inc
Affected software:
Cisco TelePresence Collaboration Endpoint (CE)
Cisco RoomOS

Detailed vulnerability description

The vulnerability allows a remote user to execute arbitrary shell commands on the target system.

The vulnerability exists due to improper input validation in the software upgrade process. A remote administrator can send specially crafted requests with malformed parameters to the system using the console, Secure Shell (SSH), or web API and execute arbitrary OS commands on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


How to mitigate CVE-2020-3336

Install updates from vendor's website.

Sources