CVE-2015-0584

Cisco Desktop Collaboration Experience DX650 - OS Command Injection via Image-Upgrade Parameter

Title source: llm
STIX 2.1

Description

The image-upgrade implementation on Cisco Desktop Collaboration Experience (aka Collaboration Desk Experience or DX) DX650 endpoints allows local users to execute arbitrary OS commands via an unspecified parameter, aka Bug ID CSCus38947.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/72696

Scores

EPSS 0.0032
EPSS Percentile 24.2%

Details

CWE
CWE-20
Status published
Products (1)
cisco/desktop_collaboration_experience_dx650
Published Feb 20, 2015
Tracked Since Feb 18, 2026