#VU9387 Privilege escalation in Cisco Emergency Responder - CVE-2017-12337


Vulnerability identifier: #VU9387

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-12337

CWE-ID: CWE-287

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Cisco Emergency Responder
Other software / Other software solutions

Vendor: Cisco Systems, Inc

Description
The vulnerability allows a remote attacker to gain elevated privileges on the target system.

The weakness exists in Cisco Voice Operating System (VOS) software platform device due to improper authentication when a refresh upgrade or Prime Collaboration Deployment (PCD) migration is performed. A remote attacker can gain root access to the device with a known password and compromise the affected system.

Mitigation
The vulnerability is addressed in the following versions: CER.12.0(1.11900.5), CER.11.5(4.20000.2).

Vulnerable software versions

Cisco Emergency Responder: 1.5.4.20000.1 - 11.5.4.10000.9

External links
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-vos

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Privilege escalation in Cisco Hosted Collaboration
Privilege escalation in Cisco SocialMiner
Privilege escalation in Cisco Unified Intelligence Center
Privilege escalation in Cisco MediaSense
Privilege escalation in Cisco Unified Communications Manager
Privilege escalation in Cisco Finesse
Privilege escalation in Cisco Unity Connection
Privilege escalation in Cisco Emergency Responder