Telepresence Video Communication Server Security Vulnerabilities and Issues — Telepresence Video Communication Server CVE List

Lucene search

CiscoTelepresence Video Communication Server

9 matches found

CVE•added 2019/10/16 7:15 p.m.•97 views

CVE-2019-12705

A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected...

6.1CVSS6AI score0.00319EPSS

CVE•added 2019/06/05 5:29 p.m.•86 views

CVE-2019-1845

A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, Cisco TelePresence Video Communication Server (VCS), and Cisco Expressway Series could allow an unauthenticated, remote attacker to cause a service outage for users a...

8.6CVSS8.7AI score0.09319EPSS

CVE•added 2019/10/29 7:15 p.m.•71 views

CVE-2011-2538

Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability which allows remote, authenticated attackers to execute arbitrary commands.

9CVSS7.3AI score0.02957EPSS

CVE•added 2019/04/18 1:29 a.m.•67 views

CVE-2019-1721

A vulnerability in the phone book feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to cause the CPU to increase to 100% utilization, causing a denial of service (DoS) condition on an affected system. The vulnera...

7.7CVSS6.4AI score0.0046EPSS

CVE•added 2019/06/05 5:29 p.m.•64 views

CVE-2019-1872

A vulnerability in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway Series software could allow an unauthenticated, remote attacker to cause an affected system to send arbitrary network requests. The vulnerability is due to improper restrictions on network services in the af...

5.3CVSS5.4AI score0.00375EPSS

CVE•added 2019/05/03 5:29 p.m.•63 views

CVE-2019-1854

A vulnerability in the management web interface of Cisco Expressway Series could allow an authenticated, remote attacker to perform a directory traversal attack against an affected device. The vulnerability is due to insufficient input validation on the web interface. An attacker could exploit this...

4.3CVSS4.4AI score0.00065EPSS

CVE•added 2019/02/07 9:29 p.m.•59 views

CVE-2019-1679

A vulnerability in the web interface of Cisco TelePresence Conductor, Cisco Expressway Series, and Cisco TelePresence Video Communication Server (VCS) Software could allow an authenticated, remote attacker to trigger an HTTP request from an affected server to an arbitrary host. This type of attack ...

5CVSS5.2AI score0.00136EPSS

CVE•added 2019/04/18 1:29 a.m.•50 views

CVE-2019-1720

A vulnerability in the XML API of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to cause the CPU to increase to 100% utilization, causing a denial of service (DoS) condition on an affected system. The vulnerability is d...

6.8CVSS5.5AI score0.00333EPSS

CVE•added 2019/04/18 1:29 a.m.•43 views

CVE-2019-1722

A vulnerability in the FindMe feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected system. The vulnerability is du...

6.5CVSS6.7AI score0.00141EPSS