Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco TelePresence Collaboration Endpoint and RoomOS Arbitrary File Write Vulnerabilities

cisco-sa-roomos-file-write-rHKwegKf · Medium · Published · Updated

Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS could allow an attacker to elevate privileges, overwrite arbitrary files, or view sensitive data on an affected device.  For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-roomos-file-write-rHKwegKf

Cisco advisory · CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities.

CVEsCVE-2023-20004, CVE-2023-20090, CVE-2023-20091, CVE-2023-20092, CVE-2023-20093, CVE-2023-20094
Cisco Bug IDsCSCwc47206, CSCwc85883, CSCwc71178, CSCwc47236, CSCwc71187, CSCwb86296
CVSS ScoreBase 4.4
Base 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N/E:X/RL:X/RC:X
Base 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Base 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L/E:X/RL:X/RC:X
Base 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco RoomOS Software, Cisco TelePresence Endpoint Software (TC/CE)

Related Products

Product CVE Evidence
Cisco TelePresence Endpoint Software (TC/CE) CVE-2023-20094 Cisco OpenVuln
Cisco TelePresence Endpoint Software (TC/CE) CVE-2023-20093 Cisco OpenVuln
Cisco TelePresence Endpoint Software (TC/CE) CVE-2023-20092 Cisco OpenVuln
Cisco TelePresence Endpoint Software (TC/CE) CVE-2023-20091 Cisco OpenVuln
Cisco TelePresence Endpoint Software (TC/CE) CVE-2023-20090 Cisco OpenVuln
Cisco TelePresence Endpoint Software (TC/CE) CVE-2023-20004 Cisco OpenVuln
Cisco TelePresence CVE-2023-20094 Cisco OpenVuln
Cisco TelePresence CVE-2023-20093 Cisco OpenVuln
Cisco TelePresence CVE-2023-20092 Cisco OpenVuln
Cisco TelePresence CVE-2023-20091 Cisco OpenVuln
Cisco TelePresence CVE-2023-20090 Cisco OpenVuln
Cisco TelePresence CVE-2023-20004 Cisco OpenVuln
Cisco RoomOS Software CVE-2023-20094 Cisco OpenVuln
Cisco RoomOS Software CVE-2023-20093 Cisco OpenVuln
Cisco RoomOS Software CVE-2023-20092 Cisco OpenVuln
Cisco RoomOS Software CVE-2023-20091 Cisco OpenVuln
Cisco RoomOS Software CVE-2023-20090 Cisco OpenVuln
Cisco RoomOS Software CVE-2023-20004 Cisco OpenVuln