CVE-2015-0713

The web framework in Cisco TelePresence Advanced Media Gateway Series Software before 1.1(1.40), Cisco TelePresence IP Gateway Series Software, Cisco TelePresence IP VCR Series Software before 3.0(1.27), Cisco TelePresence ISDN Gateway Software before 2.2(1.94), Cisco TelePresence MCU Software before 4.4(3.54) and 4.5 before 4.5(1.45), Cisco TelePresence MSE Supervisor Software before 2.3(1.38), Cisco TelePresence Serial Gateway Series Software before 1.0(1.42), Cisco TelePresence Server Software for Hardware before 3.1(1.98), and Cisco TelePresence Server Software for Virtual Machine before 4.1(1.79) allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors, aka Bug IDs CSCul55968, CSCur08993, CSCur15803, CSCur15807, CSCur15825, CSCur15832, CSCur15842, CSCur15850, and CSCur15855.

Severity	HIGH
CVSS	9.0
CWE	CWE-264
KEV
Published	10 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Cisco TelePresence Supervisor MSE 8050 Software	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence Server Software	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence Server	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence Serial Gateway Series	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence MCU Software	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence ISDN GW 3241	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence IP VCR Series	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence IP Gateway Series	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence Advanced Media Gateway	cisco-sa-20150513-tp	Cisco OpenVuln
Cisco TelePresence	cisco-sa-20150513-tp	Cisco OpenVuln