248 matches found
PT-2023-2533 · Cisco · Cisco Telepresence Ce +1
Name of the Vulnerable Software and Affected Versions: Cisco TelePresence CE and RoomOS affected versions not specified Description: A vulnerability in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of...
PT-2023-3030 · Cisco · Cisco Telepresence Ce +1
Name of the Vulnerable Software and Affected Versions: Cisco TelePresence CE and RoomOS affected versions not specified Description: A vulnerability in the software could allow an unauthenticated, adjacent attacker to view sensitive information on an affected device. This issue exists due to...
The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint (CE) device and the Cisco RoomOS operating system, related to insufficiently tested incoming requests, allows a hacker to perform an SSRF attack.
The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system is related to insufficiently tested incoming requests. Exploiting this vulnerability can allow an attacker to perform a SRF atta...
The vulnerability of the command-line interface (CLI) of the microprogramming software for Cisco TelePresence Collaboration Endpoint conference call control devices and the Cisco RoomOS operating system allows a hacker to re-write any files at will.
The vulnerability of the command-line interface CLI of the microprogramming software for Cisco TelePresence Collaboration Endpoint conference call controllers and the Cisco RoomOS operating system is related to access control deficiencies. Exploiting this vulnerability could allow a attacker to...
CVE-2023-20008
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...
CVE-2023-20008
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...
CVE-2023-20002
A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this...
Improper access control
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...
Input validation
A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this...
CVE-2023-20008
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...
CVE-2023-20008
CVE-2023-20008 affects Cisco TelePresence CE and RoomOS Software. A vulnerability in the CLI arises from improper local file access controls, allowing an authenticated, local attacker to overwrite arbitrary files by placing a symbolic link in a targeted location on the device’s local filesystem. ...
CVE-2023-20002
A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this...
CVE-2023-20002
Cisco TelePresence CE and RoomOS Software are affected by an SSRF vulnerability due to improper validation of user-supplied input. An authenticated, local attacker could bypass access controls and cause the device to issue arbitrary network requests sourced from the affected system. Affected Cisc...
Cisco TelePresence Collaboration Endpoint Software 安全漏洞
Cisco TelePresence Collaboration Endpoint Software is a suite of collaboration endpoint software from Cisco USA. A security vulnerability exists in Cisco TelePresence Collaboration Endpoint and RoomOS Software. An attacker could exploit the vulnerability to overwrite arbitrary files on the system...
Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities
Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow an authenticated, local attacker to conduct server-side request forgery SSRF attacks through an affected device or to overwrite arbitrary files on an affected device. For more...
PT-2023-1108 · Cisco · Cisco Roomos +1
Name of the Vulnerable Software and Affected Versions: Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS affected versions not specified Description: The issue is related to inadequate access control in the command-line interface CLI of the Cisco TelePresence Collaboration Endpoint CE...
The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system, related to deficiencies in access control, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an intruder to gain unauthorized access to...
The vulnerability of the xAPI microprogramming software components of the Cisco TelePresence Collaboration Endpoint conference call management devices and the Cisco RoomOS operating systems allows attackers to enhance their privileges and gain access to read, modify, or delete files.
The vulnerability of the xAPI microprogramming software used in Cisco TelePresence Collaboration Endpoint conference call management devices and Cisco RoomOS operating systems is related to incorrect path name restrictions in the directory. Exploiting this vulnerability can allow attackers to...
The vulnerability of the command-line interface (CLI) of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call control devices and Cisco RoomOS operating systems allows a hacker to overwrite arbitrary files.
The vulnerability of the command-line interface CLI of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call controllers and Cisco RoomOS operating systems is related to access control deficiencies. Exploiting this vulnerability could allow a attacker to re-recor...
The vulnerability of the command-line interface (CLI) of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call control devices and Cisco RoomOS operating systems allows a hacker to re-record arbitrary files.
The vulnerability of the command-line interface CLI of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call controllers and Cisco RoomOS operating systems is related to errors in processing symbolic links. Exploiting this vulnerability could allow an attacker to...