Unrated severityNVD Advisory· Published Jul 28, 2011· Updated Apr 29, 2026

CVE-2011-2547

Description

The web-based management interface on Cisco SA 500 series security appliances with software before 2.1.19 allows remote authenticated users to execute arbitrary commands via crafted parameters to web forms, aka Bug ID CSCtq65681.

Affected products

Cisco Systems, Inc./Sa500 Software8 versions
cpe:2.3:a:cisco:sa500_software:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:cisco:sa500_software:*:*:*:*:*:*:*:*range: <=2.1.18
- cpe:2.3:a:cisco:sa500_software:1.0.14:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:sa500_software:1.0.15:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:sa500_software:1.0.17:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:sa500_software:1.0.39:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:sa500_software:1.1.21:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:sa500_software:1.1.42:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:sa500_software:1.1.65:*:*:*:*:*:*:*
Cisco Systems, Inc./Sa520
cpe:2.3:h:cisco:sa520:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Sa520w
cpe:2.3:h:cisco:sa520w:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Sa540
cpe:2.3:h:cisco:sa540:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/45355nvdVendor Advisory
www.cisco.com/en/US/products/products_security_advisory09186a0080b8915e.shtmlnvdVendor Advisory
securitytracker.com/idnvd
www.securityfocus.com/bid/48810nvd
exchange.xforce.ibmcloud.com/vulnerabilities/68738nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000