CVSS: 9.8EPSS: 0%CPEs: 42EXPL: 0CVE-2012-3074
https://notcve.org/view.php?id=CVE-2012-3074
12 Jul 2012 — An unspecified API on Cisco TelePresence Immersive Endpoint Devices before 1.9.1 allows remote attackers to execute arbitrary commands by leveraging certain adjacency and sending a malformed request on TCP port 61460, aka Bug ID CSCtz38382. Una API no especificado en dispositivos Cisco TelePresence Immersive Endpoint anterior a v1.9.1 permite a atacantes remotos ejecutar comandos arbitrarios mediante el envío de una solicitud mal formada al puerto TCP 61460, también conocido como error ID CSCtz38382. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 33EXPL: 0CVE-2012-3075
https://notcve.org/view.php?id=CVE-2012-3075
12 Jul 2012 — The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4 allows remote authenticated users to execute arbitrary commands via a malformed request on TCP port 443, aka Bug ID CSCtn99724. La interfaz web de administración en Cisco TelePresence Immersive Endpoint Devices anterior a v1.7.4 permite a usuarios remotos autenticados ejecutar código arbitrario a través de una petición TCP mal formada al puerto 443, también conocido como Bug ID CSCtn99724 • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.8EPSS: 1%CPEs: 114EXPL: 0CVE-2012-2486
https://notcve.org/view.php?id=CVE-2012-2486
12 Jul 2012 — The Cisco Discovery Protocol (CDP) implementation on Cisco TelePresence Multipoint Switch before 1.9.0, Cisco TelePresence Immersive Endpoint Devices before 1.9.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server before 1.8.1 allows remote attackers to execute arbitrary code by leveraging certain adjacency and sending a malformed CDP packet, aka Bug IDs CSCtz40953, CSCtz40947, CSCtz40965, and CSCtz40953. La implementación del protocolo Cisco Discovery Protocol (CDP) en Cisco ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctms • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: 109EXPL: 0CVE-2012-3073
https://notcve.org/view.php?id=CVE-2012-3073
12 Jul 2012 — The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to cause a denial of service (networking outage or process crash) via (1) malformed IP packets, (2) a high rate of TCP connection requests, or (3) a high rate of TCP connection terminations, aka Bug IDs CSCti21830, CSCti21851, CSCtj19100, CSCtj19086, CSCtj19078, CSCty11219, CSCty11299, CSCty11323, and CSCty11338. ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctms •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2012-0330
https://notcve.org/view.php?id=CVE-2012-0330
01 Mar 2012 — Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a malformed SIP message, aka Bug ID CSCtr20426. Cisco TelePresence Video Communication Server con software anterior a vX7.0.1 permite a atacantes remotos provocar una denegación de servicio (caída de dispositivo) a través de un paquete SIP manipulado, también conocido como Bug ID CSCtr20426. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-vcs • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2012-0331
https://notcve.org/view.php?id=CVE-2012-0331
01 Mar 2012 — Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a crafted SIP packet, as demonstrated by a SIP INVITE message from a Tandberg device, aka Bug ID CSCtq73319. Cisco TelePresence Video Communication Server con software anterior a v7.0.1 permite a atacantes remotos provocar una denegación de servicio (caída de dispositivo) a través de un paquete SIP manipulado, como se demostró con un mensaje SIP INVITE desde un di... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120229-vcs • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 4%CPEs: 42EXPL: 0CVE-2011-0372
https://notcve.org/view.php?id=CVE-2011-0372
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640. La implementación CGI en dispositivos Cisco TelePresence con software v1.2.x hasta v1.5.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la " vulnerabilidades de inyección de comandos", tambié... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 42EXPL: 0CVE-2011-0373
https://notcve.org/view.php?id=CVE-2011-0373
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31685. La implementación CGI en dispositivos Cisco TelePresence con software v1.2.x hasta v1.5.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la " vulnerabilidad de inyección de comandos"... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 42EXPL: 0CVE-2011-0374
https://notcve.org/view.php?id=CVE-2011-0374
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31659. La implementación CGI en dispositivos Cisco TelePresence con software v1.2.x hasta v1.5.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la " vulnerabilidad de inyección de comandos"... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 82EXPL: 0CVE-2011-0375
https://notcve.org/view.php?id=CVE-2011-0375
25 Feb 2011 — The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCth24671. La implementación CGI en dispositivos Cisco TelePresence endpoint con software v1.2.x hasta v1.6.x permite a usuarios remotos autenticados ejecutar código arbitrario a través de una solicitud malformada, relacionado con la "vulnerabilidad de inyección de c... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e152.shtml • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •