What is the severity of CVE-2019-1911?

The severity of CVE-2019-1911 is high, with a severity value of 7.8.

How does CVE-2019-1911 affect Cisco Hosted Collaboration Solution?

CVE-2019-1911 affects Cisco Hosted Collaboration Solution with a version up to and including 11.5(3)pb3.

What could an attacker do with CVE-2019-1911 vulnerability?

An authenticated, local attacker could escape the restricted shell and potentially execute unauthorized commands.

Is there a fix available for CVE-2019-1911?

Yes, Cisco has released a security advisory with information on how to mitigate this vulnerability.

Vulnerability/
CVE-2019-1911

high

7.8

CWE

216 20

6/7/2019

17/9/2024

CVE-2019-1911: Cisco Unified Communications Domain Manager Restricted Shell Escape Vulnerability

Q: What is CVE-2019-1911?

CVE-2019-1911 is a vulnerability found in the CLI of Cisco Unified Communications Domain Manager (Cisco Unified CDM) Software.

First published: Sat Jul 06 2019(Updated: )

A vulnerability in the CLI of Cisco Unified Communications Domain Manager (Cisco Unified CDM) Software could allow an authenticated, local attacker to escape the restricted shell. The vulnerability is due to insufficient input validation of shell commands. An attacker could exploit this vulnerability by executing crafted commands in the shell. A successful exploit could allow the attacker to escape the restricted shell and access commands in the context of the restricted shell user, which does not have root privileges.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Hosted Collaboration Solution	<=11.5\(3\)pb3

Never miss a vulnerability like this again

Reference Links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-cucdm-rsh

Frequently Asked Questions

What is CVE-2019-1911?
CVE-2019-1911 is a vulnerability found in the CLI of Cisco Unified Communications Domain Manager (Cisco Unified CDM) Software.
What is the severity of CVE-2019-1911?
The severity of CVE-2019-1911 is high, with a severity value of 7.8.
How does CVE-2019-1911 affect Cisco Hosted Collaboration Solution?
CVE-2019-1911 affects Cisco Hosted Collaboration Solution with a version up to and including 11.5(3)pb3.
What could an attacker do with CVE-2019-1911 vulnerability?
An authenticated, local attacker could escape the restricted shell and potentially execute unauthorized commands.
Is there a fix available for CVE-2019-1911?
Yes, Cisco has released a security advisory with information on how to mitigate this vulnerability.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/title
agent/references
agent/severity
agent/author
agent/weakness
agent/last-modified-date
agent/tags
agent/description
agent/first-publish-date
agent/event
vendor/cisco
canonical/cisco hosted collaboration solution
version/cisco hosted collaboration solution/11.5\(3\)pb3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.