HomePentest-Tools.com Logo

Cisco TelePresence Server Remote Command Injection Vulnerability CVE-2015-0713

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Multiple Cisco TelePresence Products are prone to a remote command- injection vulnerability because it fails to properly sanitize user-supplied input.

Risk description

This issue is being tracked by Cisco Bug IDs CSCur15855, CSCur15842, CSCul55968, CSCur15832, CSCur15825, CSCur15807, CSCur15850, CSCur15803, and CSCur08993. Successfully exploiting this issue may allow an attacker to execute arbitrary commands with root privileges in the context of the affected device.

Recommendation

Updates are available

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 25, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available