2 matches found
Cisco TelePresence Collaboration Endpoint Software Arbitrary File Overwrite Vulnerabilities (cisco-sa-20191016-tele-ce-file-ovrwrt)
According to its self-reported version, the Cisco TelePresence Collaboration Endpoint CE Cisco TelePresence Software is affected by a vulnerability due to insufficient permission enforcement. An authenticated remote attacker can exploit this, via a support user using malicious input, to overwrite...
CVE-2019-15273
CVE-2019-15273 concerns Cisco TelePresence Collaboration Endpoint (CE) Software. The issue is in the CLI and stems from insufficient permission enforcement, allowing an authenticated local attacker (via a remote support user submitting malicious input) to overwrite arbitrary files on the underlyi...