Lucene search
K

248 matches found

Positive Technologies
Positive Technologies
added 2023/04/19 12:0 a.m.4 views

PT-2023-2533 · Cisco · Cisco Telepresence Ce +1

Name of the Vulnerable Software and Affected Versions: Cisco TelePresence CE and RoomOS affected versions not specified Description: A vulnerability in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of...

5.1CVSS6.1AI score0.00192EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/04/19 12:0 a.m.3 views

PT-2023-3030 · Cisco · Cisco Telepresence Ce +1

Name of the Vulnerable Software and Affected Versions: Cisco TelePresence CE and RoomOS affected versions not specified Description: A vulnerability in the software could allow an unauthenticated, adjacent attacker to view sensitive information on an affected device. This issue exists due to...

4.3CVSS6.2AI score0.00264EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/01/23 12:0 a.m.6 views

The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint (CE) device and the Cisco RoomOS operating system, related to insufficiently tested incoming requests, allows a hacker to perform an SSRF attack.

The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system is related to insufficiently tested incoming requests. Exploiting this vulnerability can allow an attacker to perform a SRF atta...

4.6CVSS5.5AI score0.00161EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/01/23 12:0 a.m.4 views

The vulnerability of the command-line interface (CLI) of the microprogramming software for Cisco TelePresence Collaboration Endpoint conference call control devices and the Cisco RoomOS operating system allows a hacker to re-write any files at will.

The vulnerability of the command-line interface CLI of the microprogramming software for Cisco TelePresence Collaboration Endpoint conference call controllers and the Cisco RoomOS operating system is related to access control deficiencies. Exploiting this vulnerability could allow a attacker to...

4.6CVSS7AI score0.00194EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2023/01/20 7:15 a.m.15 views

CVE-2023-20008

A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...

7.1CVSS5.3AI score0.00194EPSS
Exploits0References1
OSV
OSV
added 2023/01/20 7:15 a.m.3 views

CVE-2023-20008

A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...

7.1CVSS5.9AI score0.00194EPSS
Exploits0References1
NVD
NVD
added 2023/01/20 7:15 a.m.17 views

CVE-2023-20002

A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this...

4.4CVSS4.7AI score0.00161EPSS
Exploits0References1
Prion
Prion
added 2023/01/20 7:15 a.m.16 views

Improper access control

A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...

3.2CVSS6.8AI score0.00194EPSS
Exploits0References1Affected Software3
Prion
Prion
added 2023/01/20 7:15 a.m.17 views

Input validation

A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this...

3.2CVSS4.7AI score0.00161EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/01/19 1:41 a.m.19 views

CVE-2023-20008

A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system. An attacke...

4.4CVSS7AI score0.00194EPSS
Exploits0References1
CVE
CVE
added 2023/01/19 1:41 a.m.91 views

CVE-2023-20008

CVE-2023-20008 affects Cisco TelePresence CE and RoomOS Software. A vulnerability in the CLI arises from improper local file access controls, allowing an authenticated, local attacker to overwrite arbitrary files by placing a symbolic link in a targeted location on the device’s local filesystem. ...

7.1CVSS6.8AI score0.00194EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/19 1:40 a.m.22 views

CVE-2023-20002

A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this...

4.4CVSS5AI score0.00161EPSS
Exploits0References1
CVE
CVE
added 2023/01/19 1:40 a.m.120 views

CVE-2023-20002

Cisco TelePresence CE and RoomOS Software are affected by an SSRF vulnerability due to improper validation of user-supplied input. An authenticated, local attacker could bypass access controls and cause the device to issue arbitrary network requests sourced from the affected system. Affected Cisc...

4.4CVSS4.7AI score0.00161EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/01/12 12:0 a.m.26 views

Cisco TelePresence Collaboration Endpoint Software 安全漏洞

Cisco TelePresence Collaboration Endpoint Software is a suite of collaboration endpoint software from Cisco USA. A security vulnerability exists in Cisco TelePresence Collaboration Endpoint and RoomOS Software. An attacker could exploit the vulnerability to overwrite arbitrary files on the system...

7.1CVSS7.3AI score0.00194EPSS
Exploits0References3
Cisco
Cisco
added 2023/01/11 4:0 p.m.43 views

Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities

Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow an authenticated, local attacker to conduct server-side request forgery SSRF attacks through an affected device or to overwrite arbitrary files on an affected device. For more...

4.4CVSS6AI score0.00194EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/11 12:0 a.m.7 views

PT-2023-1108 · Cisco · Cisco Roomos +1

Name of the Vulnerable Software and Affected Versions: Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS affected versions not specified Description: The issue is related to inadequate access control in the command-line interface CLI of the Cisco TelePresence Collaboration Endpoint CE...

7.1CVSS6.7AI score0.00194EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/11/09 12:0 a.m.7 views

The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system, related to deficiencies in access control, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an intruder to gain unauthorized access to...

5CVSS5.9AI score0.00401EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/11/07 12:0 a.m.6 views

The vulnerability of the xAPI microprogramming software components of the Cisco TelePresence Collaboration Endpoint conference call management devices and the Cisco RoomOS operating systems allows attackers to enhance their privileges and gain access to read, modify, or delete files.

The vulnerability of the xAPI microprogramming software used in Cisco TelePresence Collaboration Endpoint conference call management devices and Cisco RoomOS operating systems is related to incorrect path name restrictions in the directory. Exploiting this vulnerability can allow attackers to...

5.2CVSS6.6AI score0.00452EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/11/07 12:0 a.m.5 views

The vulnerability of the command-line interface (CLI) of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call control devices and Cisco RoomOS operating systems allows a hacker to overwrite arbitrary files.

The vulnerability of the command-line interface CLI of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call controllers and Cisco RoomOS operating systems is related to access control deficiencies. Exploiting this vulnerability could allow a attacker to re-recor...

4.6CVSS7.2AI score0.00413EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/11/07 12:0 a.m.8 views

The vulnerability of the command-line interface (CLI) of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call control devices and Cisco RoomOS operating systems allows a hacker to re-record arbitrary files.

The vulnerability of the command-line interface CLI of microprogramming software for Cisco TelePresence Collaboration Endpoint conference call controllers and Cisco RoomOS operating systems is related to errors in processing symbolic links. Exploiting this vulnerability could allow an attacker to...

4.6CVSS7.2AI score0.00413EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder