Published: 26/08/2015 Updated: 04/01/2017

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authenticated users to bypass intended access restrictions and read configuration files by leveraging the Mobile and Remote Access (MRA) role and establishing a TFTP session, aka Bug ID CSCuv78531.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco telepresence video communication server software x8.5.2

Debian Bug report logs - #801089 spice: CVE-2015-5260: Insufficient validation of surface_id parameter can cause crash Package: src:spice; Maintainer for src:spice is Liang Guo <guoliang@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 6 Oct 2015 07:21:02 UTC Severity: grave Tags: patch, ...

Debian Bug report logs - #801091 spice: CVE-2015-5261: host memory access from guest using crafted images Package: src:spice; Maintainer for src:spice is Liang Guo <guoliang@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 6 Oct 2015 07:24:06 UTC Severity: grave Tags: patch, security, up ...

CWE-200 http://tools.cisco.com/security/center/viewAlert.x?alertId=40620 http://www.securitytracker.com/id/1033379 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=801089

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-6261

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect