Skip to main content

Telepresence System Software

17 CVEs product

Monthly

CVE-2014-3362 HIGH This Week

Memory leak in Cisco TelePresence System Edge MXP Series Software F9.3.3 and earlier allows remote attackers to cause a denial of service (management outage) via multiple TELNET connections, aka Bug. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software Telepresence System Edge 75 Mxp Telepresence System Edge 85 Mxp +1
NVD
CVSS 2.0
7.8
EPSS
0.7%
CVE-2014-3274 MEDIUM This Month

Cisco TelePresence System (CTS) 6.0(.5)(5) and earlier falls back to HTTP when certain HTTPS sessions cannot be established, which allows man-in-the-middle attackers to obtain sensitive directory. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Cisco Information Disclosure Telepresence System Software
NVD
CVSS 2.0
4.3
EPSS
0.4%
CVE-2014-2161 HIGH This Week

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45731. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software Tandberg 2000 Mxp Tandberg 550 Mxp +10
NVD VulDB
CVSS 2.0
7.8
EPSS
0.2%
CVE-2014-2160 HIGH This Week

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45745. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software Tandberg 2000 Mxp Tandberg 550 Mxp +10
NVD VulDB
CVSS 2.0
7.8
EPSS
0.2%
CVE-2014-2159 HIGH This Week

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCtq78722. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software Tandberg 2000 Mxp Tandberg 550 Mxp +10
NVD VulDB
CVSS 2.0
7.8
EPSS
0.2%
CVE-2014-2158 HIGH This Week

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45720. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software Tandberg 2000 Mxp Tandberg 550 Mxp +10
NVD VulDB
CVSS 2.0
7.8
EPSS
0.4%
CVE-2014-2157 HIGH This Week

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45733. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Cisco Denial Of Service Telepresence System Software Tandberg 2000 Mxp Tandberg 550 Mxp +10
NVD VulDB
CVSS 2.0
7.1
EPSS
0.4%
CVE-2014-2156 HIGH This Week

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45739. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Cisco Denial Of Service Telepresence System Software Tandberg 2000 Mxp Tandberg 550 Mxp +10
NVD VulDB
CVSS 2.0
7.1
EPSS
0.4%
CVE-2014-0661 HIGH This Week

The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote. Rated high severity (CVSS 8.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Cisco Code Injection RCE +14
NVD
CVSS 2.0
8.3
EPSS
4.0%
CVE-2013-3454 CRITICAL Act Now

Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00 devices, has a default password for the pwrecovery account, which. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Telepresence System Tx9000 Telepresence System Tx9200 Telepresence System Software +8
NVD
CVSS 2.0
10.0
EPSS
0.8%
CVE-2013-1246 MEDIUM This Month

Cisco TelePresence System Software does not properly handle inactive t-shell sessions, which allows remote authenticated users to cause a denial of service (memory consumption and service outage) by. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence System Software
NVD
CVSS 2.0
6.8
EPSS
0.4%
CVE-2012-3075 CRITICAL Act Now

The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4 allows remote authenticated users to execute arbitrary commands via a malformed request on TCP port 443,. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Cisco Telepresence System Software Telepresence System 1300 65 Telepresence System 3000 +8
NVD
CVSS 2.0
9.0
EPSS
0.6%
CVE-2012-3074 HIGH This Week

An unspecified API on Cisco TelePresence Immersive Endpoint Devices before 1.9.1 allows remote attackers to execute arbitrary commands by leveraging certain adjacency and sending a malformed request. Rated high severity (CVSS 8.3), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Cisco Telepresence System Software Telepresence System 1300 65 Telepresence System 3000 +8
NVD
CVSS 2.0
8.3
EPSS
0.9%
CVE-2012-3073 HIGH This Week

The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence Multipoint Switch Software Telepresence Multipoint Switch Telepresence System Software +12
NVD
CVSS 2.0
7.8
EPSS
0.5%
CVE-2012-2486 HIGH This Week

The Cisco Discovery Protocol (CDP) implementation on Cisco TelePresence Multipoint Switch before 1.9.0, Cisco TelePresence Immersive Endpoint Devices before 1.9.1, Cisco TelePresence Manager before. Rated high severity (CVSS 8.3), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Cisco RCE Telepresence Multipoint Switch Software Telepresence Multipoint Switch +13
NVD
CVSS 2.0
8.3
EPSS
1.0%
CVE-2012-0331 HIGH This Week

Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a crafted SIP packet, as demonstrated by a SIP INVITE. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence System Software Telepresence Video Communication Server
NVD
CVSS 2.0
7.5
EPSS
0.5%
CVE-2012-0330 HIGH This Week

Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a malformed SIP message, aka Bug ID CSCtr20426. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence System Software Telepresence Video Communication Server
NVD
CVSS 2.0
7.8
EPSS
0.4%
EPSS 1% CVSS 7.8
HIGH This Week

Memory leak in Cisco TelePresence System Edge MXP Series Software F9.3.3 and earlier allows remote attackers to cause a denial of service (management outage) via multiple TELNET connections, aka Bug. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software +3
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Cisco TelePresence System (CTS) 6.0(.5)(5) and earlier falls back to HTTP when certain HTTPS sessions cannot be established, which allows man-in-the-middle attackers to obtain sensitive directory. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Cisco Information Disclosure Telepresence System Software
NVD
EPSS 0% CVSS 7.8
HIGH This Week

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45731. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software +12
NVD VulDB
EPSS 0% CVSS 7.8
HIGH This Week

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45745. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software +12
NVD VulDB
EPSS 0% CVSS 7.8
HIGH This Week

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCtq78722. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software +12
NVD VulDB
EPSS 0% CVSS 7.8
HIGH This Week

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45720. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Telepresence System Software +12
NVD VulDB
EPSS 0% CVSS 7.1
HIGH This Week

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45733. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Cisco Denial Of Service Telepresence System Software +12
NVD VulDB
EPSS 0% CVSS 7.1
HIGH This Week

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45739. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Cisco Denial Of Service Telepresence System Software +12
NVD VulDB
EPSS 4% CVSS 8.3
HIGH This Week

The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote. Rated high severity (CVSS 8.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Cisco +16
NVD
EPSS 1% CVSS 10.0
CRITICAL Act Now

Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00 devices, has a default password for the pwrecovery account, which. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Telepresence System Tx9000 +10
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

Cisco TelePresence System Software does not properly handle inactive t-shell sessions, which allows remote authenticated users to cause a denial of service (memory consumption and service outage) by. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence System Software
NVD
EPSS 1% CVSS 9.0
CRITICAL Act Now

The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4 allows remote authenticated users to execute arbitrary commands via a malformed request on TCP port 443,. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Cisco Telepresence System Software +10
NVD
EPSS 1% CVSS 8.3
HIGH This Week

An unspecified API on Cisco TelePresence Immersive Endpoint Devices before 1.9.1 allows remote attackers to execute arbitrary commands by leveraging certain adjacency and sending a malformed request. Rated high severity (CVSS 8.3), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Cisco Telepresence System Software +10
NVD
EPSS 0% CVSS 7.8
HIGH This Week

The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence Multipoint Switch Software +14
NVD
EPSS 1% CVSS 8.3
HIGH This Week

The Cisco Discovery Protocol (CDP) implementation on Cisco TelePresence Multipoint Switch before 1.9.0, Cisco TelePresence Immersive Endpoint Devices before 1.9.1, Cisco TelePresence Manager before. Rated high severity (CVSS 8.3), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Cisco RCE +15
NVD
EPSS 0% CVSS 7.5
HIGH This Week

Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a crafted SIP packet, as demonstrated by a SIP INVITE. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence System Software +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a malformed SIP message, aka Bug ID CSCtr20426. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Telepresence System Software +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy