CVE-2010-0593
First published: Thu Apr 22 2010(Updated: )
The Cisco RVS4000 4-port Gigabit Security Router before 1.3.2.0, PVC2300 Business Internet Video Camera before 1.1.2.6, WVC200 Wireless-G PTZ Internet Video Camera before 1.1.1.15, WVC210 Wireless-G PTZ Internet Video Camera before 1.1.1.15, and WVC2300 Wireless-G Business Internet Video Camera before 1.1.2.6 do not properly restrict read access to passwords, which allows context-dependent attackers to obtain sensitive information, related to (1) access by remote authenticated users to a PVC2300 or WVC2300 via a crafted URL, (2) leveraging setup privileges on a WVC200 or WVC210, and (3) leveraging administrative privileges on an RVS4000, aka Bug ID CSCte64726.
Credit: ykramarz@cisco.com psirt@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco PVC2300 Firmware | <=1.1.1.4 | |
| Cisco WVC200 | <=1.1.0.15 | |
| Cisco WVC200 | =1.1.0.12 | |
| Cisco WVC210 | <=1.1.0.15 | |
| Cisco WVC210 | =1.1.0.12 | |
| Cisco WVC2300 Firmware | <=1.1.1.4 | |
| Cisco RVS4000 Firmware | <=1.3.1.0 | |
| Cisco RVS4000 Firmware | =1.3.0.5 | |
| <=1.1.1.4 | ||
| <=1.1.0.15 | ||
| =1.1.0.12 | ||
| <=1.1.0.15 | ||
| =1.1.0.12 | ||
| <=1.1.1.4 | ||
| <=1.3.1.0 | ||
| =1.3.0.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b27511.shtml
- http://www.securityfocus.com/bid/39612
- http://osvdb.org/63978
- http://secunia.com/advisories/39510
- http://www.vupen.com/english/advisories/2010/0965
- http://www.securitytracker.com/id?1023906
- https://exchange.xforce.ibmcloud.com/vulnerabilities/58034
Frequently Asked Questions
What is the severity of CVE-2010-0593?
CVE-2010-0593 has a medium severity rating, indicating potential risks to affected devices.
How do I fix CVE-2010-0593?
To fix CVE-2010-0593, upgrade the firmware of the affected Cisco devices to the latest version as recommended by Cisco.
Which devices are affected by CVE-2010-0593?
CVE-2010-0593 affects Cisco RVS4000, PVC2300, WVC200, WVC210, and WVC2300 devices running specific firmware versions.
What type of vulnerability is CVE-2010-0593?
CVE-2010-0593 is a security vulnerability that can potentially allow unauthorized access to affected Cisco devices.
Is there a workaround for CVE-2010-0593?
There is no specific workaround for CVE-2010-0593, and users are advised to apply firmware updates to mitigate the risk.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/remedy
- agent/references
- agent/description
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/source
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/cisco
- canonical/cisco pvc2300 firmware
- version/cisco pvc2300 firmware/1.1.1.4
- canonical/cisco wvc200
- version/cisco wvc200/1.1.0.15
- version/cisco wvc200/1.1.0.12
- canonical/cisco wvc210
- version/cisco wvc210/1.1.0.15
- version/cisco wvc210/1.1.0.12
- canonical/cisco wvc2300 firmware
- version/cisco wvc2300 firmware/1.1.1.4
- canonical/cisco rvs4000 firmware
- version/cisco rvs4000 firmware/1.3.1.0
- version/cisco rvs4000 firmware/1.3.0.5