CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2017-3815
https://notcve.org/view.php?id=CVE-2017-3815
An API Privilege vulnerability in Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to emulate Cisco TelePresence Server endpoints. Affected Products: This vulnerability affects Cisco TelePresence Server MSE 8710 Processors that are running a software release prior to Cisco TelePresence Software Release 4.3 and are running in locally managed mode. The vulnerable API was deprecated in Cisco TelePresence Software Release 4.3. More Information: CSCvc37616. Una vulnerabilidad de privilegios de API en Cisco TelePresence Server Software podría permitir que un atacante remoto no autenticado emule los puntos finales de Cisco TelePresence Server. • http://www.securityfocus.com/bid/96922 http://www.securitytracker.com/id/1038035 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170315-tps • CWE-319: Cleartext Transmission of Sensitive Information •