CVE-2015-0653

The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1.2, and X8.2 before X8.2.2 and Cisco TelePresence Conductor before X2.3.1 and XC2.4 before XC2.4.1 allows remote attackers to bypass authentication via crafted login parameters, aka Bug IDs CSCur02680 and CSCur05556.

Severity	HIGH
CVSS	10.0
CWE	CWE-287
KEV
Published	11 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Cisco Telepresence Conductor	cisco-sa-20150311-vcs	Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS)	cisco-sa-20150311-vcs	Cisco OpenVuln
Cisco TelePresence	cisco-sa-20150311-vcs	Cisco OpenVuln
Cisco Expressway	cisco-sa-20150311-vcs	Cisco OpenVuln