Vulnerabilities > Cisco > Small Business Srp520 Series Firmware > 1.01.19
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-02-25 | CVE-2012-0365 | Path Traversal vulnerability in Cisco products Directory traversal vulnerability in the Local TFTP file-upload application on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to upload software to arbitrary directories via unspecified vectors, aka Bug ID CSCtw56009. | 9.0 |
2012-02-25 | CVE-2012-0364 | Permissions, Privileges, and Access Controls vulnerability in Cisco products Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allow remote attackers to replace the configuration file via an upload request to an unspecified URL, aka Bug ID CSCtw55495. | 7.8 |
2012-02-25 | CVE-2012-0363 | Code Injection vulnerability in Cisco products The web interface on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability," aka Bug ID CSCtt46871. | 9.0 |