Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2019-15962

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an authenticated, local attacker to write files to the /root directory of an affected device. The vulnerability is due to improper permission assignment. An attacker could exploit this vulnerability by logging in as the remotesupport user and writing files to the /root directory of an affected device.

SeverityMEDIUM
CVSS4.4
CWECWE-275
KEV
Published
Modified

Related Products

Product Advisory Evidence
Cisco TelePresence TC Software cisco-sa-20191016-tele-ce-filewrite Cisco OpenVuln
Cisco TelePresence CE Software cisco-sa-20191016-tele-ce-filewrite Cisco OpenVuln
Cisco TelePresence cisco-sa-20191016-tele-ce-filewrite Cisco OpenVuln