142 matches found
Cisco Expressway Series and Cisco TelePresence Denial of Service Vulnerability
Cisco Expressway Series Software and Cisco TelePresence Video Communication Server VCS Software are both telepresence video communication servers from Cisco that integrate with unified communications and voice communications environments to It can be integrated with unified communications and voi...
CVE-2017-12287
CVE-2017-12287 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) Software. The issue stems from incomplete input validation of URL requests in the REST API of the CDB management component, allowing an authenticated, remote attacker to send a crafted URL that ...
Cisco TelePresence Video Communication Server Denial of Service Vulnerability (CNVD-2017-221679)
Cisco TelePresence Video Communication Server VCS is a telepresence video communication server from Cisco USA.Session Initiation Protocol SIP is one of the session initiation protocols. A denial of service vulnerability exists in SIP in Cisco TelePresence VCS. A remote attacker could exploit this...
Design/Logic Flaw
A vulnerability in the HTTP traffic server component of Cisco Expressway could allow an unauthenticated, remote attacker to initiate TCP connections to arbitrary hosts. This does not allow for full traffic proxy through the Expressway. Affected Products: This vulnerability affects Cisco Expresswa...
CVE-2016-1468
The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5.2 allows remote authenticated users to execute arbitrary commands via crafted fields, aka Bug ID CSCuv12531...
Cisco TelePresence Video Communication Server Expressway Command Injection Vulnerability
Cisco TelePresence Video Communication Server Expressway is a TelePresence video communication server from Cisco that integrates with Unified Communications and voice communication environments to provide the best possible experience for end-users using a variety of communication tools. A remote...
Cisco TelePresence Video Communication Server Denial of Service Vulnerability
Cisco TelePresence Video Communication Server VCS is a telepresence video communication server from Cisco that integrates with Unified Communications and voice communication environments to provide the best possible experience for end users using a variety of communication tools. A security...
CVE-2016-1338
Cisco TelePresence Video Communication Server VCS X8.5.1 and X8.5.2 allows remote authenticated users to cause a denial of service VoIP outage via a crafted SIP message, aka Bug ID CSCuu43026...
CVE-2016-1338
Cisco TelePresence Video Communication Server VCS X8.5.1 and X8.5.2 allows remote authenticated users to cause a denial of service VoIP outage via a crafted SIP message, aka Bug ID CSCuu43026...
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to obtain statistical data about calls.
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server lies in the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain statistical data about calls through a specially crafte...
CVE-2016-1316
Cisco TelePresence Video Communication Server VCS X8.1 through X8.7, as used in conjunction with Jabber Guest, allows remote attackers to obtain sensitive call-statistics information via a direct request to an unspecified URL, aka Bug ID CSCux73362...
Cisco TelePresence Video Communication Server Expressway Unauthorized Access Vulnerability
Cisco TelePresence Video Communication Server is a telepresence video communication server from Cisco. Cisco TelePresence Video Communication Server VCS Expressway X8.6 has a security vulnerability in its implementation, which can be exploited by an authenticated remote user to bypass the target...
Cisco TelePresence Video Communication Server Information Disclosure Vulnerability
Cisco TelePresence is a Cisco TelePresence solution. Cisco TelePresence Video Communication Server VCS X8.6 uses the same key for different customer installations, which allows local users to bypass encryption protection mechanisms...
Cisco TelePresence Video Communication Server Cross-Site Request Forgery Vulnerability
Cisco TelePresence Video Communication Server is a telepresence video communication server from Cisco that integrates with Unified Communications and voice communication environments to provide the best possible experience for end users using a variety of communication tools. A cross-site request...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Cisco TelePresence Video Communication Server VCS X8.5.1 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv72412...
Cisco TelePresence Video Communication Server Expressway File Modification Vulnerability (cisco-sa-20151007-vcs)
A vulnerability in the symbolic link operation of the Cisco TelePresence Video Communication Server VCS Expressway could allow an authenticated, local attacker to perform a symbolic link attack on the affected system. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be...
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to execute arbitrary commands during guest access.
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server lies in the lack of access control for certain functions. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands during guest access using a special web page...
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a perpetrator to read arbitrary files or cause a service failure.
The vulnerability of the Call Policy Configuration module in the Cisco TelePresence Video Communication Server software exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to read arbitrary files or trigger a service failure using specially...
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to bypass the passwords of unauthorized users.
The vulnerability in the web-based administration interface of Cisco TelePresence Video Communication Server software is related to errors in managing registration data. Exploiting this vulnerability could allow a malicious actor to reset the passwords of arbitrary users remotely...
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to execute arbitrary commands on the operating system.
The vulnerability of the Microprogrammed Software of the Cisco TelePresence Video Communication Server exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary operating system commands using a specially crafted HTTP reques...