Telepresence System Software@1.3.2 Security Vulnerabilities and Issues — Telepresence System Software@1.3.2 CVE List

Lucene search

CiscoTelepresence System Software1.3.2

9 matches found

CVE•added 2011/02/25 12:0 p.m.•47 views

CVE-2011-0379

Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x; and Cisco TelePresence Manage...

7.9CVSS7.9AI score0.05023EPSS

CVE•added 2011/02/25 12:0 p.m.•45 views

CVE-2011-0373

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31685.

9CVSS7.7AI score0.0163EPSS

CVE•added 2011/02/25 12:0 p.m.•45 views

CVE-2011-0377

Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allow remote attackers to cause a denial of service (service crash) via a malformed SOAP request in conjunction with a spoofed TelePresence Manager that supplies an invalid IP address, aka Bug ID CSCth03605.

7.8CVSS6.9AI score0.00602EPSS

CVE•added 2011/02/25 12:0 p.m.•44 views

CVE-2011-0378

The XML-RPC implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a TCP request, related to a "command injection vulnerability," aka Bug ID CSCtb52587.

8.3CVSS8.1AI score0.01871EPSS

CVE•added 2011/02/25 12:0 p.m.•42 views

CVE-2011-0375

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCth24671.

9CVSS7.7AI score0.0163EPSS

CVE•added 2011/02/25 12:0 p.m.•42 views

CVE-2011-0376

The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers to obtain sensitive information via a GET request, aka Bug ID CSCte43876.

10CVSS6.3AI score0.012EPSS

CVE•added 2011/02/25 12:0 p.m.•40 views

CVE-2011-0374

9CVSS7.7AI score0.0163EPSS

CVE•added 2011/02/25 12:0 p.m.•37 views

CVE-2011-0372

The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640.

10CVSS8.1AI score0.04008EPSS

CVE•added 2013/08/08 2:55 p.m.•34 views

CVE-2013-3454

Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00 devices, has a default password for the pwrecovery account, which makes it easier for remote attackers to modify the configuration or perform arbitrary actions via HTTP...

10CVSS7.2AI score0.00838EPSS