Telepresence Recording Server Software Security Vulnerabilities and Issues — Telepresence Recording Server Software CVE List

Lucene search

CiscoTelepresence Recording Server Software

8 matches found

CVE•added 2011/02/25 12:0 p.m.•40 views

CVE-2011-0388

Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x do not properly restrict remote access to the Java servlet RMI interface, which allows remote attackers to cause a denial of service (...

7.8CVSS6.8AI score0.01001EPSS

CVE•added 2011/02/25 12:0 p.m.•40 views

CVE-2011-0392

Cisco TelePresence Recording Server devices with software 1.6.x do not require authentication for an XML-RPC interface, which allows remote attackers to perform unspecified actions via a session on TCP port 8080, aka Bug ID CSCtg35833.

7.5CVSS7.2AI score0.00776EPSS

CVE•added 2011/02/25 12:0 p.m.•39 views

CVE-2011-0385

The administrative web interface on Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x allows remote attackers to create or overwrite arbitrary files, and possibly execute arbitrary cod...

10CVSS7.5AI score0.05026EPSS

CVE•added 2011/02/25 12:0 p.m.•38 views

CVE-2011-0383

The Java Servlet framework on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote...

10CVSS8.1AI score0.03664EPSS

CVE•added 2011/02/25 12:0 p.m.•36 views

CVE-2011-0386

The XML-RPC implementation on Cisco TelePresence Recording Server devices with software 1.6.x and 1.7.x before 1.7.1 allows remote attackers to overwrite files and consequently execute arbitrary code via a malformed request, aka Bug ID CSCti50739.

9.3CVSS7.9AI score0.03151EPSS

CVE•added 2011/02/25 12:0 p.m.•33 views

CVE-2011-0382

The CGI subsystem on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 allows remote attackers to execute arbitrary commands via a request to TCP port 443, related to a "command injection vulnerability," aka Bug ID CSCtf97221.

10CVSS8.1AI score0.05305EPSS

CVE•added 2011/08/29 8:55 p.m.•33 views

CVE-2011-2555

Cisco TelePresence Recording Server 1.7.2.x before 1.7.2.1 has a default password for the root administrator account, which makes it easier for remote attackers to modify the configuration via an SSH session, aka Bug ID CSCtr76182.

10CVSS6.8AI score0.01135EPSS

CVE•added 2011/02/25 12:0 p.m.•32 views

CVE-2011-0391

Cisco TelePresence Recording Server devices with software 1.6.x allow remote attackers to cause a denial of service (thread consumption and device outage) via a malformed request, related to an "ad hoc recording" issue, aka Bug ID CSCtf97205.

7.8CVSS6.9AI score0.00726EPSS