Design/Logic Flaw

2022-05-2614:15:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.9%

JSON

Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

CPENameOperatorVersion
telepresence_video_communication_servereq<= x14.0.7

CPE	Name	Operator	Version
	telepresence_video_communication_server	eq	<= x14.0.7

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-filewrite-bsFVwueV