11 matches found
Cisco TelePresence Collaboration Endpoint Path Traversal Vulnerability
Cisco RoomOS Software and Cisco?TelePresence Collaboration Endpoint CE are both products of the U.S. Cisco Cisco.Cisco RoomOS Software is a set of automated management software for Cisco devices. The software is mainly used for upgrading and managing the motherboard firmware of Cisco...
The vulnerabilities of the xAPI microprogramming software components of Cisco TelePresence Collaboration Endpoint (CE), Cisco TelePresence Codec (TC), and the operating system Cisco RoomOS allow attackers to gain unauthorized access to protected information and write arbitrary files to the device’s file system.
The vulnerability of the xAPI microprogramming software components of Cisco TelePresence Collaboration Endpoint, Cisco TelePresence Codec, and the operating system Cisco RoomOS exists due to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability can...
Cisco TelePresence Codec and Collaboration Endpoint Software Operating System Command Injection Vulnerability
Cisco TelePresence Integrator C Series and so on are the products of the United States Cisco Cisco company.Cisco TelePresence Integrator C Series is a set of C series telepresence system.Cisco TelePresence EX Series is a set of EX series telepresence system.Cisco TelePresence SX Series is a set o...
The vulnerability of the Cisco Discovery Protocol implementation in microprogramming software for Cisco TelePresence Codec (TC) and Cisco Collaboration Endpoint (CE) devices arises due to insufficient validation of input data. This allows attackers to execute arbitrary commands or carry out arbitrary scripts.
The vulnerability of the Cisco Discovery Protocol implementation in microprogramming software for Cisco TelePresence Codec TC and Cisco Collaboration Endpoint CE software exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitra...
CVE-2019-1878
A vulnerability in the Cisco Discovery Protocol CDP implementation for the Cisco TelePresence Codec TC and Collaboration Endpoint CE Software could allow an unauthenticated, adjacent attacker to inject arbitrary shell commands that are executed by the device. The vulnerability is due to...
Input validation
A vulnerability in the Cisco Discovery Protocol CDP implementation for the Cisco TelePresence Codec TC and Collaboration Endpoint CE Software could allow an unauthenticated, adjacent attacker to inject arbitrary shell commands that are executed by the device. The vulnerability is due to...
Cisco TelePresence Codec Remote Detection
Detects the installed version of Cisco TelePresence Codec. This script sends an HTTP GET request and tries to ensure the presence of Cisco TelePresence Codec. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
CVE-2017-6648
A vulnerability in the Session Initiation Protocol SIP of the Cisco TelePresence Codec TC and Collaboration Endpoint CE Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service DoS condition. The vulnerabili...
Command injection
The XML API in TelePresence Codec TC 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, and 7.3.5 and Collaboration Endpoint CE 8.0.0, 8.0.1, and 8.1.0 in Cisco TelePresence Software mishandles authentication, which allows remote attackers to execute control commands or make configuration changes v...
CVE-2016-1387
The XML API in TelePresence Codec TC 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, and 7.3.5 and Collaboration Endpoint CE 8.0.0, 8.0.1, and 8.1.0 in Cisco TelePresence Software mishandles authentication, which allows remote attackers to execute control commands or make configuration changes v...
CVE-2016-1387
Cisco TelePresence TC (Codec) 7.2.x–7.3.x and CE (Collaboration Endpoint) 8.0.x–8.1.x are affected by an authentication bypass in the XML API due to improper authentication implementation. An unauthenticated, remote attacker can bypass XML API authentication and perform configuration changes or i...