Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-4353

Malware in sbrugna...

6.9CVSS6.4AI score0.0054EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-17970

Malicious code in bioql PyPI...

8.2CVSS7.3AI score0.00603EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/07 4:15 p.m.10 views

CVE-2024-20255

A vulnerability in the SOAP API of Cisco Expressway Series and Cisco TelePresence Video Communication Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. This vulnerability is due to insufficient CSRF protections for th...

8.2CVSS8.3AI score0.00603EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/07 4:15 p.m.43 views

CVE-2024-20255

A vulnerability in the SOAP API of Cisco Expressway Series and Cisco TelePresence Video Communication Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. This vulnerability is due to insufficient CSRF protections for th...

8.2CVSS8.5AI score0.00603EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/07 4:15 p.m.16 views

CVE-2024-20254

Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an unauthenticated, remote attacker to conduct cross-site request forgery CSRF attacks that perform arbitrary actions on an affected device. Note: "Cisco Expressway Series" refers...

9.6CVSS7.3AI score0.00805EPSS
Exploits0References1
CVE
CVE
added 2023/06/28 12:0 a.m.742 views

CVE-2023-20192

CVE-2023-20192 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). The issue is a privilege-escalation flaw stemming from incorrect handling of password change requests, enabling an authenticated attacker with Administrator-level read-only credentials to eleva...

9.6CVSS8.2AI score0.00656EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/06/08 12:0 a.m.6 views

多款Cisco产品 安全漏洞

Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS are both products of Cisco, Inc.Cisco Expressway Series is software for accessing devices outside the firewall. The software provides simple, highly secure access for users outside the firewall, helping telecommuters wo...

9.6CVSS6.8AI score0.00914EPSS
Exploits0References3
CISA
CISA
added 2022/10/06 12:0 a.m.15 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA...

1.6AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2019/04/18 12:20 a.m.7 views

CVE-2019-1721 Cisco Expressway Series and Cisco TelePresence Video Communication Server Denial of Service Vulnerability

A vulnerability in the phone book feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to cause the CPU to increase to 100% utilization, causing a denial of service DoS condition on an affected system. The...

7.7CVSS6.8AI score0.02067EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/04/18 12:20 a.m.20 views

CVE-2019-1721 Cisco Expressway Series and Cisco TelePresence Video Communication Server Denial of Service Vulnerability

A vulnerability in the phone book feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to cause the CPU to increase to 100% utilization, causing a denial of service DoS condition on an affected system. The...

7.7CVSS6.3AI score0.02067EPSS
Exploits0References2
CVE
CVE
added 2019/04/18 12:20 a.m.61 views

CVE-2019-1722

Summary: CVE-2019-1722 describes a CSRF vulnerability in the FindMe feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). An unauthenticated, remote attacker could trick a logged-in user into following a malicious link to perform arbitrary actions via the web...

6.5CVSS6.7AI score0.00685EPSS
Exploits0References2Affected Software2
Cisco
Cisco
added 2018/10/03 4:0 p.m.394 views

Cisco Expressway Series and Cisco TelePresence Video Communication Server Remote Code Execution Vulnerability

A vulnerability in the administrative web interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to execute code with user-level privileges on the underlying operating system. The vulnerability is due to insufficien...

4.7CVSS2.7AI score0.02874EPSS
Exploits0References1
Cvelist
Cvelist
added 2016/08/08 12:0 a.m.28 views

CVE-2016-1468

The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5.2 allows remote authenticated users to execute arbitrary commands via crafted fields, aka Bug ID CSCuv12531...

8.8AI score0.02894EPSS
Exploits0References3
NVD
NVD
added 2016/03/12 2:59 a.m.22 views

CVE-2016-1338

Cisco TelePresence Video Communication Server VCS X8.5.1 and X8.5.2 allows remote authenticated users to cause a denial of service VoIP outage via a crafted SIP message, aka Bug ID CSCuu43026...

8CVSS6.1AI score0.01631EPSS
Exploits0References1
CNVD
CNVD
added 2015/09/06 12:0 a.m.4 views

Cisco TelePresence Video Communication Server Expressway Operating System Command Injection Vulnerability

Cisco TelePresence Video Communication Server VCS Expressway is a TelePresence video communication server from Cisco that integrates with Unified Communications and voice communication environments to provide the best possible experience for end users using a variety of communication tools. A...

6.9CVSS6.8AI score0.0054EPSS
Exploits0References1
NVD
NVD
added 2015/08/20 10:59 a.m.27 views

CVE-2015-4329

The administrator web interface in Cisco TelePresence Video Communication Server VCS X8.5.2 allows remote authenticated users to execute arbitrary OS commands via crafted HTTP requests, aka Bug ID CSCuv11796...

6.5CVSS7.2AI score0.02286EPSS
Exploits0References3
Prion
Prion
added 2015/08/20 12:59 a.m.18 views

Information disclosure

The Configuration Log File component in Cisco TelePresence Video Communication Server VCS Expressway X8.5.2 allows remote authenticated users to obtain sensitive information by reading a log file, aka Bug ID CSCuv12340...

4CVSS6.2AI score0.01648EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2015/03/13 12:0 a.m.4 views

Cisco TelePresence Video Communication Server (VCS) /Expressway Vulnerabilities

Cisco TelePresence Video Communication Server VCS, Cisco Expressway, and Cisco TelePresence Conductor are Cisco TelePresence video communication servers that integrate with Unified Communications and voice communication environments to provide a best-in-class experience for end users using a...

10CVSS7.1AI score0.04341EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/10/21 12:0 a.m.118 views

Cisco TelePresence Video Communication Server Bash Remote Code Execution (Shellshock)

According to its self-reported version number, the version of Cisco TelePresence Video Communication Server is affected by a command injection vulnerability known as Shellshock in its included GNU Bash shell. The vulnerability is due to the processing of trailing strings after function definition...

10CVSS8.1AI score0.99999EPSS
Exploits158References10
Rows per page
Query Builder