CVSS: 8.4EPSS: 0%CPEs: 44EXPL: 0CVE-2014-2174
https://notcve.org/view.php?id=CVE-2014-2174
25 May 2015 — Cisco TelePresence T, TelePresence TE, and TelePresence TC before 7.1 do not properly implement access control, which allows remote attackers to obtain root privileges by sending packets on the local network and allows physically proximate attackers to obtain root privileges via unspecified vectors, aka Bug ID CSCub67651. Cisco TelePresence T, TelePresence TE, y TelePresence TC anterior a 7.1 no implementan correctamente el control de acceso, lo que permite a atacantes remotos obtener privilegios root media... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc • CWE-284: Improper Access Control •
CVSS: 6.1EPSS: 0%CPEs: 14EXPL: 0CVE-2015-0696
https://notcve.org/view.php?id=CVE-2015-0696
15 Apr 2015 — Cross-site scripting (XSS) vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuq94977. Vulnerabilidad de XSS en la página de login en Cisco TC Software anterior a 7.1.0 en dispositivos Cisco TelePresence Collaboration Desk and Room Endpoints permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a ... • http://tools.cisco.com/security/center/viewAlert.x?alertId=38349 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 15EXPL: 0CVE-2015-0697
https://notcve.org/view.php?id=CVE-2015-0697
15 Apr 2015 — Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuq94980. Vulnerabilidad de la redirección abierta en la página de login en Cisco TC Software anterior a 6.3-26 y 7.x anterior a 7.3.0 en dispositivos Cisco TelePresence Collaboration Desk and Room Endpoints pe... • http://tools.cisco.com/security/center/viewAlert.x?alertId=38350 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2162
https://notcve.org/view.php?id=CVE-2014-2162
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCud29566. La implementación SIP en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCud29566. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2014-2163
https://notcve.org/view.php?id=CVE-2014-2163
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCua64961. La implementación SIP en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCua64961. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2164
https://notcve.org/view.php?id=CVE-2014-2164
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCuj94651. La implementación SIP en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCuj94651. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2165
https://notcve.org/view.php?id=CVE-2014-2165
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCtq72699. La implementación SIP en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCtq72699. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2014-2166
https://notcve.org/view.php?id=CVE-2014-2166
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and TE Software 4.x allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCto70562. La implementación SIP en Cisco TelePresence TC Software 4.x y TE Software 4.x permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCto70562. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2167
https://notcve.org/view.php?id=CVE-2014-2167
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCua86589. La implementación SIP en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCua86589. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 7%CPEs: 26EXPL: 0CVE-2014-2168
https://notcve.org/view.php?id=CVE-2014-2168
02 May 2014 — Buffer overflow in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to execute arbitrary code via crafted DNS response packets, aka Bug ID CSCty44804. Desbordamiento de buffer en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos ejecutar código arbitrario a través de paquetes de respuesta DNS manipulados, también conocido como Bug ID CSCty44804. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •