The vulnerability of the microprogramming software of the Cisco TelePresence Serial Gateway allows a intruder to execute arbitrary code with privileges of the root user.

The vulnerability of the web-based framework of the microprogramming software for Cisco TelePresence Serial Gateway relates to deficiencies in access control for files. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code with privileges of th...

The vulnerability of the microprogramming software of the Cisco TelePresence Supervisor MSE 8050 allows a intruder to execute arbitrary code with privileges of the root user.

The vulnerability of the web-based framework of the microprogramming software for the Cisco TelePresence Supervisor MSE 8050 relates to deficiencies in access control for files. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code with...

The vulnerability of the microprogramming software of the Cisco TelePresence IP Gateway allows a intruder to execute arbitrary code with privileges of the root user.

The vulnerability of the web-based framework of the microprogramming software for Cisco TelePresence IP Gateways is related to deficiencies in access control for files. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code with privileges of th...

The vulnerability of the microprogramming software of the Cisco TelePresence IP VCR allows a intruder to execute arbitrary code with privileges of the root user.

The vulnerability of the web-based framework of the microprogramming software for Cisco TelePresence IP VCR lies in the lack of access control for files. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with privileges of the root user remotely...

The vulnerability of the microprogramming software of the Cisco TelePresence ISDN Gateway 3241 allows a intruder to execute arbitrary code with privileges of the root user.

The vulnerability of the web-based framework of the microprogramming software for the Cisco TelePresence ISDN Gateway 3241 relates to deficiencies in access control for files. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code with privilege...

The vulnerability of the microprogramming software of the Cisco TelePresence MCU allows a intruder to execute arbitrary code with privileges of the root user.

The vulnerability of the web-based framework of the microprogramming software for Cisco TelePresence MCU control devices is related to deficiencies in access control for files. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code with privileg...

The vulnerability of the microprogramming software of the Cisco TelePresence Server allows a intruder to execute arbitrary code with privileges of the root user.

The vulnerability of the web-based framework of the microprogramming software for Cisco TelePresence Server lies in the lack of access control for files. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with privileges of a root user...

[SECURITY] Fedora 20 Update: python-django14-1.4.20-1.fc20

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

[SECURITY] Fedora 22 Update: python-django-1.8.2-1.fc22

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

CVE-2015-0757

The web framework in Cisco Identity Services Engine ISE 1.21.901 and 1.30.722 does not properly implement session handlers, which allows remote attackers to obtain sensitive information by reading web pages, as demonstrated by MnT reports, aka Bug ID CSCuq23140...

Design/Logic Flaw

The web framework in Cisco Identity Services Engine ISE 1.21.901 and 1.30.722 does not properly implement session handlers, which allows remote attackers to obtain sensitive information by reading web pages, as demonstrated by MnT reports, aka Bug ID CSCuq23140...

CVE-2015-0757

The CVE concerns Cisco Identity Services Engine (ISE) web framework versions 1.2(1.901) and 1.3(0.722), where improper session handler implementation allows an unauthenticated, remote attacker to read web pages and obtain sensitive information (e.g., MnT reports). This is a genuine information-di...

Cisco Identity Services Engine Information Disclosure Vulnerability

A vulnerability in the web framework of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to access information on a targeted device that is normally available only to authenticated users. The vulnerability is due to improper implementation of session handlers set...

[SECURITY] Fedora 22 Update: php-ZendFramework2-2.3.8-1.fc22

Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolv...

CVE-2015-0713

The web framework in Cisco TelePresence Advanced Media Gateway Series Software before 1.11.40, Cisco TelePresence IP Gateway Series Software, Cisco TelePresence IP VCR Series Software before 3.01.27, Cisco TelePresence ISDN Gateway Software before 2.21.94, Cisco TelePresence MCU Software before...

CVE-2015-0713

CVE-2015-0713 affects Cisco TelePresence family web frameworks. The description covers multiple products and versions where remote authenticated users can execute arbitrary commands with root privileges via unspecified vectors. Affected are Cisco TelePresence Advanced Media Gateway Series Softwar...

Cisco TelePresence Server Command Injection Vulnerability

According to the self-reported version, the remote Cisco TelePresence Server contains a vulnerability in its web framework, which can allow an authenticated, remote attacker to inject arbitrary commands on the device with root permissions. C Tenable Network Security, Inc. include"compat.inc"; if...

Cisco TelePresence ISDN Gateway Command Injection Vulnerability

According to its self-reported version, the remote Cisco TelePresence ISDN Gateway device contains a vulnerability in its web framework, which can allow an authenticated, remote attacker to inject arbitrary commands on the device with root permissions. C Tenable Network Security, Inc...

Cisco TelePresence MCU Command Injection Vulnerability

According to the self-reported version, the remote Cisco TelePresence MCU device contains a vulnerability in its web framework, which can allow an authenticated, remote attacker to inject arbitrary commands on the device with root permissions. C Tenable Network Security, Inc. include"compat.inc";...

Cisco Patches Security Vulnerabilities in TelePresence

Cisco has patched a number of vulnerabilities in its TelePresence products, the most serious of which allow a remote hacker to inject commands into a device and gain root privileges. TelePresence products link remote locations with audio, video and other collaboration tools. Cisco said none of th...