EUVD-2015-0592

Malware in sbrugna...

EUVD-2015-0765

Malware in sbrugna...

Vulnerabilities fixed in Cisco products

Vulnerabilities have been fixed in several Cisco products. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS. Remote code execution Administrator/Root privileges Increased user privileges The...

CVE-2019-1722

A vulnerability in the FindMe feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack and perform arbitrary actions on an affected system. The vulnerability is due ...

Design/Logic Flaw

Cisco TelePresence Video Communication Server VCS Expressway X8.6 allows remote authenticated users to bypass intended read-only restrictions and upload Tandberg Linux Package TLP files by visiting an administrative page, aka Bug ID CSCuw55651...

Code injection

Cisco TelePresence Video Communication Server VCS and Cisco Expressway allow remote attackers to cause a denial of service memory and CPU consumption, and partial outage via crafted SIP packets, aka Bug ID CSCur12473...

CVE-2014-0675

The Expressway component in Cisco TelePresence Video Communication Server VCS uses the same default X.509 certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's tru...