Telepresence Video Communication Server@x14.0.3 Security Vulnerabilities and Issues — Telepresence Video Communication Server@x14.0.3 CVE List

Lucene search

CiscoTelepresence Video Communication Serverx14.0.3

4 matches found

CVE•added 2024/11/15 4:15 p.m.•7479 views

CVE-2022-20853

A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management ...

7.4CVSS7.6AI score0.00444EPSS

CVE•added 2024/11/15 4:15 p.m.•6569 views

CVE-2022-20814

A vulnerability in the certificate validation of Cisco Expressway-C and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data. The vulnerability is due to a lack of validation of the SSL server certificate that an affected device receiv...

7.4CVSS7.5AI score0.00226EPSS

CVE•added 2024/07/17 5:15 p.m.•62 views

CVE-2024-20400

A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of HTTP request parameters. An attacker could exploit this vulnerabilit...

4.7CVSS7AI score0.00127EPSS

CVE•added 2024/10/02 5:15 p.m.•43 views

CVE-2024-20492

A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit this vulnerability, the attacker must have Administrator-level credentia...

6.7CVSS6.4AI score0.00202EPSS