CVE-2016-1387

The XML API in TelePresence Codec (TC) 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, and 7.3.5 and Collaboration Endpoint (CE) 8.0.0, 8.0.1, and 8.1.0 in Cisco TelePresence Software mishandles authentication, which allows remote attackers to execute control commands or make configuration changes via an API request, aka Bug ID CSCuz26935.

Severity	CRITICAL
CVSS	9.8
CWE	CWE-287
KEV
Published	10 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Cisco TelePresence TC Software	cisco-sa-20160504-tpxml	Cisco OpenVuln
Cisco TelePresence	cisco-sa-20160504-tpxml	Cisco OpenVuln