CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-0652
https://notcve.org/view.php?id=CVE-2015-0652
The Session Description Protocol (SDP) implementation in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X8.2 and Cisco TelePresence Conductor before XC2.4 allows remote attackers to cause a denial of service (mishandled exception and device reload) via a crafted media description, aka Bug IDs CSCus96593 and CSCun73192. La implementación Session Description Protocol (SDP) en Cisco TelePresence Video Communication Server (VCS) y Cisco Expressway anterior a X8.2 y Cisco TelePresence Conductor anterior a XC2.4 permite a atacantes remotos causar una denegación de servicio (excepción mal manejado y recarga de dispositivo) a través de una descripción de medios manipulada, también conocido como Bug IDs CSCus96593 y CSCun73192. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150311-vcs http://www.securitytracker.com/id/1031910 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2015-0653
https://notcve.org/view.php?id=CVE-2015-0653
The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1.2, and X8.2 before X8.2.2 and Cisco TelePresence Conductor before X2.3.1 and XC2.4 before XC2.4.1 allows remote attackers to bypass authentication via crafted login parameters, aka Bug IDs CSCur02680 and CSCur05556. La interfaz de gestión en Cisco TelePresence Video Communication Server (VCS) y Cisco Expressway anterior a X7.2.4, X8 anterior a X8.1.2, y X8.2 anterior a X8.2.2 y Cisco TelePresence Conductor anterior a X2.3.1 y XC2.4 anterior a XC2.4.1 permite a atacantes remotos evadir la autenticación a través de parámetros de inicio de sesión manipulados, también conocido como Bug IDs CSCur02680 y CSCur05556. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150311-vcs http://www.securitytracker.com/id/1031910 • CWE-287: Improper Authentication •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2014-3369
https://notcve.org/view.php?id=CVE-2014-3369
The SIP IX implementation in Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.1.1 allows remote attackers to cause a denial of service (device reload) via crafted SDP packets, aka Bug ID CSCuo42252. La implementación SIP IX en Cisco TelePresence Video Communication Server (VCS) y Expressway Software anterior a X8.1.1 permite a atacantes remotos causar una denegación de servicio (recarga del dispositivo) a través de paquetes SDP manipulados, también conocido como Bug ID CSCuo42252. • http://secunia.com/advisories/60850 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-vcs http://tools.cisco.com/security/center/viewAlert.x?alertId=35828 http://www.securitytracker.com/id/1031055 • CWE-399: Resource Management Errors •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2014-3370
https://notcve.org/view.php?id=CVE-2014-3370
Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.1.1 allow remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug IDs CSCum60442 and CSCum60447. Cisco TelePresence Video Communication Server (VCS) y Expressway Software anterior a X8.1.1 permiten a atacantes remotos causar una denegación de servicio (recarga del dispositivo) a través de paquetes SIP manipulados, también conocido como Bug IDs CSCum60442 y CSCum60447. • http://secunia.com/advisories/60850 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-vcs http://tools.cisco.com/security/center/viewAlert.x?alertId=35829 http://www.securitytracker.com/id/1031055 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2014-3368
https://notcve.org/view.php?id=CVE-2014-3368
Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.2 allow remote attackers to cause a denial of service (device reload) via a high rate of crafted packets, aka Bug ID CSCui06507. Cisco TelePresence Video Communication Server (VCS) y Expressway Software anterior a X8.2 permiten a atacantes remotos causar una denegación de servicio (recarga del dispositivo) a través de una tasa alta de paquetes manipulados, también conocido como Bug ID CSCui06507. • http://secunia.com/advisories/60850 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-vcs http://tools.cisco.com/security/center/viewAlert.x?alertId=35827 http://www.securitytracker.com/id/1031055 • CWE-399: Resource Management Errors •