Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco telepresence system software vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-20255
A vulnerability in the SOAP API of Cisco Expressway Series and Cisco TelePresence Video Communication Server could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficien...
Cisco Expressway
NA
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.27.0
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.24.10
Eclipse Jetty
Caddyserver Caddy
Golang Http2
Golang Go
Golang Networking
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
35 Github repositories
2 Articles
NA
CVE-2023-20105
A vulnerability in the change password functionality of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker with Read-only credentials to elevate privileges to Administrator on an affected system. This vuln...
Cisco Telepresence Video Communication Server
NA
CVE-2023-20192
Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated attacker with Administrator-level read-only credentials to elevate their privileges to Administrator with read-write credentials on an affected...
Cisco Telepresence Video Communication Server
NA
CVE-2023-20002
A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local malicious user to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker co...
Cisco Roomos 10.3.2.0
Cisco Roomos 10.3.4.0
Cisco Roomos 10.8.2.5
Cisco Roomos 10.11.5.2
Cisco Roomos 10.8.4.0
Cisco Roomos 10.11.3.0
Cisco Roomos 10.15.3.0
Cisco Telepresence Collaboration Endpoint 8.1.1
Cisco Telepresence Collaboration Endpoint 8.3.0
Cisco Telepresence Collaboration Endpoint 8.3.5
Cisco Telepresence Collaboration Endpoint 9.0.1
Cisco Telepresence Collaboration Endpoint 9.1.1
Cisco Telepresence Collaboration Endpoint 9.1.2
Cisco Telepresence Collaboration Endpoint 9.1.3
Cisco Telepresence Collaboration Endpoint 9.1.4
Cisco Telepresence Collaboration Endpoint 9.1.5
Cisco Telepresence Collaboration Endpoint 9.1.6
Cisco Telepresence Collaboration Endpoint 9.10.1
Cisco Telepresence Collaboration Endpoint 9.10.2
Cisco Telepresence Collaboration Endpoint 9.10.3
Cisco Telepresence Collaboration Endpoint 9.12.4
Cisco Telepresence Collaboration Endpoint 9.12.5
NA
CVE-2023-20008
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local malicious user to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local ...
Cisco Roomos 10.3.2.0
Cisco Roomos 10.3.4.0
Cisco Roomos 10.8.2.5
Cisco Roomos 10.11.5.2
Cisco Roomos 10.8.4.0
Cisco Roomos 10.11.3.0
Cisco Roomos 10.15.3.0
Cisco Telepresence Collaboration Endpoint 8.1.1
Cisco Telepresence Collaboration Endpoint 8.3.0
Cisco Telepresence Collaboration Endpoint 8.3.5
Cisco Telepresence Collaboration Endpoint 9.0.1
Cisco Telepresence Collaboration Endpoint 9.1.1
Cisco Telepresence Collaboration Endpoint 9.1.2
Cisco Telepresence Collaboration Endpoint 9.1.3
Cisco Telepresence Collaboration Endpoint 9.1.4
Cisco Telepresence Collaboration Endpoint 9.1.5
Cisco Telepresence Collaboration Endpoint 9.1.6
Cisco Telepresence Collaboration Endpoint 9.10.1
Cisco Telepresence Collaboration Endpoint 9.10.2
Cisco Telepresence Collaboration Endpoint 9.10.3
Cisco Telepresence Collaboration Endpoint 9.12.4
Cisco Telepresence Collaboration Endpoint 9.12.5
3.5
CVSSv2
CVE-2022-20768
A vulnerability in the logging component of Cisco TelePresence Collaboration Endpoint (CE) and RoomOS Software could allow an authenticated, remote malicious user to view sensitive information in clear text on an affected system. This vulnerability is due to the storage of certai...
Cisco Telepresence Collaboration Endpoint
9
CVSSv2
CVE-2022-20754
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker with read/write privileges to the application to write files or execute arbitra...
Cisco Telepresence Video Communication Server
9
CVSSv2
CVE-2022-20755
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker with read/write privileges to the application to write files or execute arbitra...
Cisco Telepresence Video Communication Server
7.5
CVSSv2
CVE-2022-22965
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e....
Vmware Spring Framework
Cisco Cx Cloud Agent
Oracle Sd-wan Edge 9.0
Oracle Retail Xstore Point Of Service 20.0.1
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Sd-wan Edge 9.1
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Oracle Product Lifecycle Analytics 3.6.1
Oracle Financial Services Enterprise Case Management 8.1.1.0
Oracle Financial Services Enterprise Case Management 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 22.1.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0
174 Github repositories
7 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »