Lucene search
K

142 matches found

CNVD
CNVD
added 2017/10/20 12:0 a.m.5 views

Cisco Expressway Series and Cisco TelePresence Denial of Service Vulnerability

Cisco Expressway Series Software and Cisco TelePresence Video Communication Server VCS Software are both telepresence video communication servers from Cisco that integrate with unified communications and voice communications environments to It can be integrated with unified communications and voi...

4.3CVSS4.8AI score0.01649EPSS
Exploits0References1
CVE
CVE
added 2017/10/19 8:0 a.m.65 views

CVE-2017-12287

CVE-2017-12287 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) Software. The issue stems from incomplete input validation of URL requests in the REST API of the CDB management component, allowing an authenticated, remote attacker to send a crafted URL that ...

4.3CVSS4.8AI score0.01649EPSS
Exploits0References3Affected Software3
CNVD
CNVD
added 2017/08/18 12:0 a.m.4 views

Cisco TelePresence Video Communication Server Denial of Service Vulnerability (CNVD-2017-221679)

Cisco TelePresence Video Communication Server VCS is a telepresence video communication server from Cisco USA.Session Initiation Protocol SIP is one of the session initiation protocols. A denial of service vulnerability exists in SIP in Cisco TelePresence VCS. A remote attacker could exploit this...

7.1CVSS6.5AI score0.02032EPSS
Exploits0References1
Prion
Prion
added 2016/12/14 12:59 a.m.21 views

Design/Logic Flaw

A vulnerability in the HTTP traffic server component of Cisco Expressway could allow an unauthenticated, remote attacker to initiate TCP connections to arbitrary hosts. This does not allow for full traffic proxy through the Expressway. Affected Products: This vulnerability affects Cisco Expresswa...

6.4CVSS7.3AI score0.02019EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2016/08/08 12:0 a.m.28 views

CVE-2016-1468

The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5.2 allows remote authenticated users to execute arbitrary commands via crafted fields, aka Bug ID CSCuv12531...

8.8AI score0.02894EPSS
Exploits0References3
CNVD
CNVD
added 2016/08/04 12:0 a.m.4 views

Cisco TelePresence Video Communication Server Expressway Command Injection Vulnerability

Cisco TelePresence Video Communication Server Expressway is a TelePresence video communication server from Cisco that integrates with Unified Communications and voice communication environments to provide the best possible experience for end-users using a variety of communication tools. A remote...

8.8CVSS8.3AI score0.02894EPSS
Exploits0References1
CNVD
CNVD
added 2016/03/16 12:0 a.m.7 views

Cisco TelePresence Video Communication Server Denial of Service Vulnerability

Cisco TelePresence Video Communication Server VCS is a telepresence video communication server from Cisco that integrates with Unified Communications and voice communication environments to provide the best possible experience for end users using a variety of communication tools. A security...

8CVSS6.7AI score0.01631EPSS
Exploits0References1
NVD
NVD
added 2016/03/12 2:59 a.m.22 views

CVE-2016-1338

Cisco TelePresence Video Communication Server VCS X8.5.1 and X8.5.2 allows remote authenticated users to cause a denial of service VoIP outage via a crafted SIP message, aka Bug ID CSCuu43026...

8CVSS6.1AI score0.01631EPSS
Exploits0References1
OSV
OSV
added 2016/03/12 2:59 a.m.3 views

CVE-2016-1338

Cisco TelePresence Video Communication Server VCS X8.5.1 and X8.5.2 allows remote authenticated users to cause a denial of service VoIP outage via a crafted SIP message, aka Bug ID CSCuu43026...

6.5CVSS5.8AI score0.01631EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/03/02 12:0 a.m.7 views

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to obtain statistical data about calls.

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server lies in the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain statistical data about calls through a specially crafte...

5CVSS5.9AI score0.01459EPSS
Exploits0References2
OSV
OSV
added 2016/02/09 3:59 a.m.2 views

CVE-2016-1316

Cisco TelePresence Video Communication Server VCS X8.1 through X8.7, as used in conjunction with Jabber Guest, allows remote attackers to obtain sensitive call-statistics information via a direct request to an unspecified URL, aka Bug ID CSCux73362...

5.3CVSS5.7AI score0.01459EPSS
Exploits0References2
CNVD
CNVD
added 2015/12/14 12:0 a.m.5 views

Cisco TelePresence Video Communication Server Expressway Unauthorized Access Vulnerability

Cisco TelePresence Video Communication Server is a telepresence video communication server from Cisco. Cisco TelePresence Video Communication Server VCS Expressway X8.6 has a security vulnerability in its implementation, which can be exploited by an authenticated remote user to bypass the target...

4CVSS9.2AI score0.01684EPSS
Exploits0References1
CNVD
CNVD
added 2015/12/10 12:0 a.m.3 views

Cisco TelePresence Video Communication Server Information Disclosure Vulnerability

Cisco TelePresence is a Cisco TelePresence solution. Cisco TelePresence Video Communication Server VCS X8.6 uses the same key for different customer installations, which allows local users to bypass encryption protection mechanisms...

2.1CVSS6.6AI score0.00232EPSS
Exploits0References1
CNVD
CNVD
added 2015/11/26 12:0 a.m.5 views

Cisco TelePresence Video Communication Server Cross-Site Request Forgery Vulnerability

Cisco TelePresence Video Communication Server is a telepresence video communication server from Cisco that integrates with Unified Communications and voice communication environments to provide the best possible experience for end users using a variety of communication tools. A cross-site request...

6.8CVSS7.1AI score0.00587EPSS
Exploits0References1
Prion
Prion
added 2015/11/21 11:59 a.m.17 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Cisco TelePresence Video Communication Server VCS X8.5.1 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv72412...

6.8CVSS7.7AI score0.00587EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2015/10/14 12:0 a.m.41 views

Cisco TelePresence Video Communication Server Expressway File Modification Vulnerability (cisco-sa-20151007-vcs)

A vulnerability in the symbolic link operation of the Cisco TelePresence Video Communication Server VCS Expressway could allow an authenticated, local attacker to perform a symbolic link attack on the affected system. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be...

6.9CVSS6.5AI score0.00355EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/09/16 12:0 a.m.8 views

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to execute arbitrary commands during guest access.

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server lies in the lack of access control for certain functions. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands during guest access using a special web page...

6.5CVSS5.9AI score0.02341EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/09/16 12:0 a.m.5 views

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a perpetrator to read arbitrary files or cause a service failure.

The vulnerability of the Call Policy Configuration module in the Cisco TelePresence Video Communication Server software exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to read arbitrary files or trigger a service failure using specially...

5.5CVSS5.6AI score0.01871EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/09/15 12:0 a.m.7 views

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to bypass the passwords of unauthorized users.

The vulnerability in the web-based administration interface of Cisco TelePresence Video Communication Server software is related to errors in managing registration data. Exploiting this vulnerability could allow a malicious actor to reset the passwords of arbitrary users remotely...

5.5CVSS5.5AI score0.02407EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/09/15 12:0 a.m.7 views

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to execute arbitrary commands on the operating system.

The vulnerability of the Microprogrammed Software of the Cisco TelePresence Video Communication Server exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary operating system commands using a specially crafted HTTP reques...

4CVSS5.9AI score0.01983EPSS
Exploits0References2
Rows per page
Query Builder