HomePentest-Tools.com Logo

Cisco TelePresence VCS and VCS Expressway Multiple Vulnerabilities Dec15 CVE-2015-6414CVE-2015-6413

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Cisco TelePresence Video Communication Server is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to: - The use of the same encryption key across different customer. - The missing authorization checks on certain administrative pages. Successful exploitation will allow attacker to read and disclose certain sensitive data, and upload TLP files changing contents of VCS.

Recommendation

Apply updates from Vendor. See the references for more details.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Dec 13, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available