248 matches found
CVE-2020-3336
CVE-2020-3336 affects Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software. Root cause: insufficient input validation during the software upgrade process. An attacker with administrative privileges can send malformed requests via console, SSH, or web API to modify device c...
CVE-2020-3336 Cisco TelePresence Collaboration Endpoint and RoomOS Software Command Injection Vulnerability
A vulnerability in the software upgrade process of Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software could allow an authenticated, remote attacker to modify the filesystem to cause a denial of service DoS or gain privileged access to the root filesystem. The vulnerabili...
Cisco RoomOS Software and TelePresence Collaboration Endpoint Software Operating System Command Injection Vulnerability
Cisco RoomOS Software and Cisco TelePresence Collaboration Endpoint Software are both products of the U.S. company Cisco Cisco.Cisco RoomOS Software is a set of automatic management software for Cisco devices. The software is mainly used for upgrading and managing the motherboard firmware of Cisc...
Cisco TelePresence Collaboration Endpoint and RoomOS Software Command Injection Vulnerability
A vulnerability in the software upgrade process of Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software could allow an authenticated, remote attacker to modify the filesystem to cause a denial of service DoS or gain privileged access to the root filesystem. The vulnerabili...
Cisco TelePresence Collaboration Endpoint Path Traversal Vulnerability
Cisco RoomOS Software and Cisco?TelePresence Collaboration Endpoint CE are both products of the U.S. Cisco Cisco.Cisco RoomOS Software is a set of automated management software for Cisco devices. The software is mainly used for upgrading and managing the motherboard firmware of Cisco...
The vulnerabilities of the xAPI microprogramming software components of Cisco TelePresence Collaboration Endpoint (CE), Cisco TelePresence Codec (TC), and the operating system Cisco RoomOS allow attackers to gain unauthorized access to protected information and write arbitrary files to the device’s file system.
The vulnerability of the xAPI microprogramming software components of Cisco TelePresence Collaboration Endpoint, Cisco TelePresence Codec, and the operating system Cisco RoomOS exists due to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability can...
Cisco TelePresence Collaboration Endpoint, TelePresence Codec, and RoomOS Software Path Traversal Vulnerability
A vulnerability in the video endpoint API xAPI of Cisco TelePresence Collaboration Endpoint CE Software, Cisco TelePresence Codec TC Software, and Cisco RoomOS Software could allow an authenticated, remote attacker to conduct directory traversal attacks on an affected device. The vulnerability is...
The vulnerability of the command-line interface (CLI) of the Cisco RoomOS operating system and the Cisco TelePresence Collaboration Endpoint (CE) device management software, related to access control deficiencies, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the command-line interface CLI of the Cisco RoomOS operating system and the Cisco TelePresence Collaboration Endpoint CE device management software is related to lack of access control mechanisms. Exploiting this vulnerability can allow an attacker to gain unauthorized access...
The vulnerability of the Cisco RoomOS operating system and the micro-programming software of the Cisco TelePresence Collaboration Endpoint (CE) devices, related to insufficient input data validation, allows a perpetrator to trigger a service failure.
The vulnerability of the Cisco RoomOS operating system and the microprogramming software of the Cisco TelePresence Collaboration Endpoint devices is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
CVE-2019-15967
A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...
Design/Logic Flaw
A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...
CVE-2019-15967 Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability
A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...
CVE-2019-15967 Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability
A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...
CVE-2019-15967
The CVE-2019-15967 issue affects Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS Software. A vulnerability in the CLI allows an authenticated, local attacker to enable audio recording without user notification by exploiting unnecessary debug commands and gaining unrestricted acces...
Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability
A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...
Cisco TelePresence Collaboration Endpoint and RoomOS Software Denial of Service Vulnerabilities
Multiple vulnerabilities in the video service of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerabilities are due to insufficient input validation. A...
Cisco TelePresence Collaboration Endpoint, TelePresence Codec, and RoomOS Software Privilege Escalation Vulnerability
A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE, Cisco TelePresence Codec TC, and Cisco RoomOS Software could allow an authenticated, remote attacker to escalate privileges to an unrestricted user of the restricted shell. The vulnerability is due to insufficient input...
Cisco TelePresence CE Software, TC Software and RoomOS Software Elevation of Privilege Vulnerabilities
Cisco RoomOS Software is a suite of automated management software for Cisco devices from Cisco.Cisco TelePresence is a telepresence solution.Cisco TelePresence CE Software is an endpoint in a videoconferencing solution known as a telepresence system. Cisco TelePresence CE Software is an endpoint ...
Multiple Cisco Products CVE-2019-15967 Local Security Bypass Vulnerability
Description Multiple Cisco Products are prone to a local security-bypass vulnerability. An attacker may exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks. This issue is being tracked by Cisco Bug ID CSCvq29891. Technologi...
Cisco RoomOS Software License Issues Vulnerability
Cisco RoomOS Software is the United States Cisco Cisco company's set of automatic management software for Cisco devices. The software is mainly used to upgrade, manage the motherboard firmware of Cisco devices. An authorization issue vulnerability exists in versions of Cisco RoomOS Software prior...