Lucene search
K

248 matches found

CVE
CVE
added 2020/06/18 2:16 a.m.106 views

CVE-2020-3336

CVE-2020-3336 affects Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software. Root cause: insufficient input validation during the software upgrade process. An attacker with administrative privileges can send malformed requests via console, SSH, or web API to modify device c...

9CVSS7AI score0.02074EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2020/06/18 2:16 a.m.20 views

CVE-2020-3336 Cisco TelePresence Collaboration Endpoint and RoomOS Software Command Injection Vulnerability

A vulnerability in the software upgrade process of Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software could allow an authenticated, remote attacker to modify the filesystem to cause a denial of service DoS or gain privileged access to the root filesystem. The vulnerabili...

7.2CVSS7AI score0.02074EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/18 12:0 a.m.3 views

Cisco RoomOS Software and TelePresence Collaboration Endpoint Software Operating System Command Injection Vulnerability

Cisco RoomOS Software and Cisco TelePresence Collaboration Endpoint Software are both products of the U.S. company Cisco Cisco.Cisco RoomOS Software is a set of automatic management software for Cisco devices. The software is mainly used for upgrading and managing the motherboard firmware of Cisc...

9CVSS7.5AI score0.02074EPSS
Exploits0References1
Cisco
Cisco
added 2020/06/17 4:0 p.m.33 views

Cisco TelePresence Collaboration Endpoint and RoomOS Software Command Injection Vulnerability

A vulnerability in the software upgrade process of Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software could allow an authenticated, remote attacker to modify the filesystem to cause a denial of service DoS or gain privileged access to the root filesystem. The vulnerabili...

7.2CVSS2.6AI score0.02074EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/18 12:0 a.m.2 views

Cisco TelePresence Collaboration Endpoint Path Traversal Vulnerability

Cisco RoomOS Software and Cisco?TelePresence Collaboration Endpoint CE are both products of the U.S. Cisco Cisco.Cisco RoomOS Software is a set of automated management software for Cisco devices. The software is mainly used for upgrading and managing the motherboard firmware of Cisco...

9CVSS6.8AI score0.08453EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/01/29 12:0 a.m.3 views

The vulnerabilities of the xAPI microprogramming software components of Cisco TelePresence Collaboration Endpoint (CE), Cisco TelePresence Codec (TC), and the operating system Cisco RoomOS allow attackers to gain unauthorized access to protected information and write arbitrary files to the device’s file system.

The vulnerability of the xAPI microprogramming software components of Cisco TelePresence Collaboration Endpoint, Cisco TelePresence Codec, and the operating system Cisco RoomOS exists due to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability can...

9CVSS7.5AI score0.08453EPSS
Exploits0References2Affected Software2
Cisco
Cisco
added 2020/01/22 4:0 p.m.19 views

Cisco TelePresence Collaboration Endpoint, TelePresence Codec, and RoomOS Software Path Traversal Vulnerability

A vulnerability in the video endpoint API xAPI of Cisco TelePresence Collaboration Endpoint CE Software, Cisco TelePresence Codec TC Software, and Cisco RoomOS Software could allow an authenticated, remote attacker to conduct directory traversal attacks on an affected device. The vulnerability is...

8.8CVSS2AI score0.08453EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/01/13 12:0 a.m.4 views

The vulnerability of the command-line interface (CLI) of the Cisco RoomOS operating system and the Cisco TelePresence Collaboration Endpoint (CE) device management software, related to access control deficiencies, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the command-line interface CLI of the Cisco RoomOS operating system and the Cisco TelePresence Collaboration Endpoint CE device management software is related to lack of access control mechanisms. Exploiting this vulnerability can allow an attacker to gain unauthorized access...

4.4CVSS5.4AI score0.00288EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/09 12:0 a.m.5 views

The vulnerability of the Cisco RoomOS operating system and the micro-programming software of the Cisco TelePresence Collaboration Endpoint (CE) devices, related to insufficient input data validation, allows a perpetrator to trigger a service failure.

The vulnerability of the Cisco RoomOS operating system and the microprogramming software of the Cisco TelePresence Collaboration Endpoint devices is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.8CVSS7.2AI score0.01374EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2019/11/26 3:15 a.m.4 views

CVE-2019-15967

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

4.4CVSS5.8AI score0.00288EPSS
Exploits0References1
Prion
Prion
added 2019/11/26 3:15 a.m.11 views

Design/Logic Flaw

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

2.1CVSS4.6AI score0.00288EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2019/11/26 3:11 a.m.8 views

CVE-2019-15967 Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

4.4CVSS6.5AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/26 3:11 a.m.27 views

CVE-2019-15967 Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

4.4CVSS4.5AI score0.00288EPSS
Exploits0References1
CVE
CVE
added 2019/11/26 3:11 a.m.105 views

CVE-2019-15967

The CVE-2019-15967 issue affects Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS Software. A vulnerability in the CLI allows an authenticated, local attacker to enable audio recording without user notification by exploiting unnecessary debug commands and gaining unrestricted acces...

4.4CVSS4.5AI score0.00288EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2019/11/06 4:0 p.m.65 views

Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

4.4CVSS1.9AI score0.00288EPSS
Exploits0References1
Cisco
Cisco
added 2019/11/06 4:0 p.m.56 views

Cisco TelePresence Collaboration Endpoint and RoomOS Software Denial of Service Vulnerabilities

Multiple vulnerabilities in the video service of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerabilities are due to insufficient input validation. A...

7.5CVSS2.9AI score0.01374EPSS
Exploits0References1
Cisco
Cisco
added 2019/11/06 4:0 p.m.64 views

Cisco TelePresence Collaboration Endpoint, TelePresence Codec, and RoomOS Software Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE, Cisco TelePresence Codec TC, and Cisco RoomOS Software could allow an authenticated, remote attacker to escalate privileges to an unrestricted user of the restricted shell. The vulnerability is due to insufficient input...

8.8CVSS2.2AI score0.01746EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/06 12:0 a.m.3 views

Cisco TelePresence CE Software, TC Software and RoomOS Software Elevation of Privilege Vulnerabilities

Cisco RoomOS Software is a suite of automated management software for Cisco devices from Cisco.Cisco TelePresence is a telepresence solution.Cisco TelePresence CE Software is an endpoint in a videoconferencing solution known as a telepresence system. Cisco TelePresence CE Software is an endpoint ...

8.8CVSS7.3AI score0.01746EPSS
Exploits0References1
Symantec
Symantec
added 2019/11/06 12:0 a.m.25 views

Multiple Cisco Products CVE-2019-15967 Local Security Bypass Vulnerability

Description Multiple Cisco Products are prone to a local security-bypass vulnerability. An attacker may exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks. This issue is being tracked by Cisco Bug ID CSCvq29891. Technologi...

1.2AI score0.00288EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/09/18 12:0 a.m.2 views

Cisco RoomOS Software License Issues Vulnerability

Cisco RoomOS Software is the United States Cisco Cisco company's set of automatic management software for Cisco devices. The software is mainly used to upgrade, manage the motherboard firmware of Cisco devices. An authorization issue vulnerability exists in versions of Cisco RoomOS Software prior...

5.5CVSS6.6AI score0.00262EPSS
Exploits0References1
Rows per page
Query Builder