The WIL-A module in Cisco TelePresence VX Clinical Assistant 1.2 before 1.21 changes the admin password to an empty password upon a reboot, which makes it easier for remote attackers to obtain access. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Cisco
Authentication Bypass
Telepresence Vx Clinical Assistant
NVD
CVSS 2.0
10.0
EPSS
1.1%