The vulnerability of the xAPI microprogramming software component of the Cisco TelePresence Collaboration Endpoint (CE) conference call control device and the Cisco RoomOS operating system allows a hacker to read arbitrary files.
The vulnerability of the xAPI microprogramming software components of the Cisco TelePresence Collaboration Endpoint conference call management device and the Cisco RoomOS operating system is related to an incorrect limitation on the path name to the restricted access directory. Exploiting this...