Cisco TelePresence CE and TC Software Command Injection Vulnerability (cisco-sa-20161102-tp)

Cisco TelePresence Endpoint is prone to local command injection vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2016-6459

Cisco TelePresence endpoints running CE or TC software are vulnerable to a local shell command injection when input is not properly sanitized. An authenticated, local attacker could exploit this to execute arbitrary commands. Fixed releases are 6.3.4, 7.3.7, 8.2.2, and 8.3.0. Affected releases in...