EUVD-2017-15706

Malware in sbrugna...

Cisco TelePresence IX5000 Series Directory Traversal Vulnerability

Cisco TelePresence is a Cisco TelePresence solution. A directory traversal vulnerability exists in the web framework of the Cisco TelePresence IX5000 Seriesg that originates from invalid input authentication. An unauthenticated, remote attacker could exploit this vulnerability to access arbitrary...

Directory traversal

A vulnerability in the web framework of the Cisco TelePresence IX5000 Series could allow an unauthenticated, remote attacker to access arbitrary files on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by using directory...

CVE-2017-6652

A vulnerability in the web framework of the Cisco TelePresence IX5000 Series could allow an unauthenticated, remote attacker to access arbitrary files on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by using directory...

CVE-2017-6652

A vulnerability in the web framework of the Cisco TelePresence IX5000 Series could allow an unauthenticated, remote attacker to access arbitrary files on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by using directory...

CVE-2017-6652

The CVE-2017-6652 issue affects Cisco TelePresence IX5000 Series devices running software version 8.2.0 and is a directory-traversal vulnerability in the web framework caused by insufficient input validation. An unauthenticated, remote attacker could read arbitrary files from the device filesyste...

CVE-2015-6276

Cisco TelePresence IX5000 8.0.3 stores a private key associated with an X.509 certificate under the web root with insufficient access control, which allows remote attackers to obtain cleartext versions of HTTPS traffic or spoof devices via a direct request to the certificate directory, aka Bug ID...

CVE-2015-6276

Cisco TelePresence IX5000 8.0.3 stores a private key for an X.509 certificate under the web root with insufficient access control, enabling remote attackers to obtain private keys and potentially decrypt traffic or impersonate the device. Cisco has released software updates addressing this certif...

Cisco TelePresence IX5000 Systems Certificate Information Disclosure Vulnerability

A vulnerability in the directory on the Web Management Interface of Cisco TelePresence IX5000 Systems could allow an unauthenticated, remote attacker to decrypt captured traffic on the affected device or perform a man-in-the-middle attack. The vulnerability is due to the inclusion of the...

Cisco TelePresence IX5000 Series Unauthorized Access Vulnerability

The Cisco TelePresence IX5000 Series is the industry's first three-screen product to support H.265. An unauthorized access vulnerability exists in Cisco TelePresence IX5000 Series, which can be exploited by an attacker to gain unauthorized access...

Cisco TelePresence IX5000 Series Web Management Vulnerability

A vulnerability in the administrative web management portal of Cisco TelePresence IX5000 Series devices could allow an authenticated, remote attacker to gain unauthorized access to certain pages in the web interface. The vulnerability is due to a failure to properly restrict access given to the...