CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
61.9%
Cisco TelePresence TC and TE Software contains the following vulnerabilities:
Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability
Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability
Successful exploitation of the Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability could allow an attacker to bypass
system authentication and access the device with the privileges of the root user.
Successful
exploitation of the Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability could allow an attacker to
restart several processes and possibly trigger a reload of the
affected system.
Cisco has released software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are not available.
This advisory is available at the following link:
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | telepresence_tc_software | any | cpe:2.3:a:cisco:telepresence_tc_software:any:*:*:*:*:*:*:* |
cisco | telepresence_te_software | any | cpe:2.3:a:cisco:telepresence_te_software:any:*:*:*:*:*:*:* |