Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Multiple Vulnerabilities in Cisco TelePresence TC and TE Software

cisco-sa-20150513-tc · High · Published · Updated

Cisco TelePresence TC and TE Software contains the following vulnerabilities: Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability Successful exploitation of the Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability could allow an attacker to bypass system authentication and access the device with the privileges of the root user. Successful exploitation of the Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability could allow an attacker to restart several processes and possibly trigger a reload of the affected system. Cisco has released software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are not available. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc

Cisco advisory · CSAF JSON

Workarounds

There are no workarounds that mitigate these vulnerabilities.

CVEsCVE-2014-2174, CVE-2015-0722
Cisco Bug IDsCSCub67651, CSCuj68952
CVSS ScoreBase 8.3
Base 8.3 AV:A/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C
Base 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source
Cisco TelePresence TC Software, Cisco TelePresence TE Software

Related Products

Product CVE Evidence
Cisco TelePresence TE Software CVE-2015-0722 Cisco OpenVuln
Cisco TelePresence TE Software CVE-2014-2174 Cisco OpenVuln
Cisco TelePresence TC Software CVE-2015-0722 Cisco OpenVuln
Cisco TelePresence TC Software CVE-2014-2174 Cisco OpenVuln
Cisco TelePresence CVE-2015-0722 Cisco OpenVuln
Cisco TelePresence CVE-2014-2174 Cisco OpenVuln