CVSS: 7.8EPSS: 0%CPEs: 67EXPL: 0CVE-2017-6648
https://notcve.org/view.php?id=CVE-2017-6648
08 Jun 2017 — A vulnerability in the Session Initiation Protocol (SIP) of the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms within the software. An attacker could exploit this vulnerability by sending a flood of SIP INVITE packets to the affected device. An exploit could allow the at... • http://www.securityfocus.com/bid/98934 • CWE-399: Resource Management Errors •
CVSS: 8.4EPSS: 0%CPEs: 44EXPL: 0CVE-2014-2174
https://notcve.org/view.php?id=CVE-2014-2174
25 May 2015 — Cisco TelePresence T, TelePresence TE, and TelePresence TC before 7.1 do not properly implement access control, which allows remote attackers to obtain root privileges by sending packets on the local network and allows physically proximate attackers to obtain root privileges via unspecified vectors, aka Bug ID CSCub67651. Cisco TelePresence T, TelePresence TE, y TelePresence TC anterior a 7.1 no implementan correctamente el control de acceso, lo que permite a atacantes remotos obtener privilegios root media... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2015-0722
https://notcve.org/view.php?id=CVE-2015-0722
25 May 2015 — The network drivers in Cisco TelePresence T, Cisco TelePresence TE, and Cisco TelePresence TC before 7.3.2 allow remote attackers to cause a denial of service (process restart or device reload) via a flood of crafted IP packets, aka Bug ID CSCuj68952. Los controladores de red en Cisco TelePresence T, Cisco TelePresence TE, y Cisco TelePresence TC anterior a 7.3.2 permiten a atacantes remotos causar una denegación de servicio (reinicio de proceso o recarga de dispositivo) a través de una inundación de paquet... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2175
https://notcve.org/view.php?id=CVE-2014-2175
02 May 2014 — Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allow remote attackers to cause a denial of service (memory consumption) via crafted H.225 packets, aka Bug ID CSCtq78849. Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos causar una denegación de servicio (consumo de memoria) a través de paquetes H.225 manipulados, también conocido como Bug ID CSCtq78849. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 1%CPEs: 28EXPL: 0CVE-2014-2171
https://notcve.org/view.php?id=CVE-2014-2171
02 May 2014 — Heap-based buffer overflow in Cisco TelePresence TC Software 4.x through 6.x before 6.0.1 and TE Software 4.x and 6.0.x before 6.0.2 allows remote attackers to execute arbitrary code via crafted SIP packets, aka Bug ID CSCud81796. Desbordamiento de buffer basado en memoria dinámica en Cisco TelePresence TC Software 4.x hasta 6.x hasta 6.0.1 y TE Software 4.x y 6.0.x anterior a 6.0.2 permite a atacantes remotos ejecutar código arbitrario a través de paquetes SIP manipulados, también conocido como Bug ID CSCu... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.0EPSS: 0%CPEs: 31EXPL: 0CVE-2014-2169
https://notcve.org/view.php?id=CVE-2014-2169
02 May 2014 — Cisco TelePresence TC Software 4.x through 6.x before 6.2.0 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to internal system scripts, aka Bug ID CSCue60211. Cisco TelePresence TC Software 4.x hasta 6.x anterior a 6.2.0 y TE Software 4.x y 6.0 permiten a usuarios remotos autenticados ejecutar comandos arbitrarios mediante el uso de los comandos como argumentos hacia scripts de sistema internos, también conocido como Bug ID CSCue6... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2167
https://notcve.org/view.php?id=CVE-2014-2167
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCua86589. La implementación SIP en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCua86589. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2014-2166
https://notcve.org/view.php?id=CVE-2014-2166
02 May 2014 — The SIP implementation in Cisco TelePresence TC Software 4.x and TE Software 4.x allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCto70562. La implementación SIP en Cisco TelePresence TC Software 4.x y TE Software 4.x permite a atacantes remotos causar una denegación de servicio (reinicio de dispositivo) a través de paquetes SIP manipulados, también conocido como Bug ID CSCto70562. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-20: Improper Input Validation •
CVSS: 9.0EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2170
https://notcve.org/view.php?id=CVE-2014-2170
02 May 2014 — Cisco TelePresence TC Software 4.x and 5.x before 5.1.7 and 6.x before 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell (aka tcsh) scripts, aka Bug ID CSCue60202. Cisco TelePresence TC Software 4.x y 5.x anterior a 5.1.7 y 6.x anterior a 6.0.1 y TE Software 4.x y 6.0 permiten a usuarios remotos autenticados ejecutar comandos arbitrarios mediante el uso de comandos como argumentos hacia scripts tshell (también conoci... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 0%CPEs: 26EXPL: 0CVE-2014-2168
https://notcve.org/view.php?id=CVE-2014-2168
02 May 2014 — Buffer overflow in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to execute arbitrary code via crafted DNS response packets, aka Bug ID CSCty44804. Desbordamiento de buffer en Cisco TelePresence TC Software 4.x y 5.x y TE Software 4.x y 6.0 permite a atacantes remotos ejecutar código arbitrario a través de paquetes de respuesta DNS manipulados, también conocido como Bug ID CSCty44804. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140430-tcte • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •