Unrated severityNVD Advisory· Published Mar 13, 2015· Updated May 6, 2026

CVE-2015-0652

Description

The Session Description Protocol (SDP) implementation in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X8.2 and Cisco TelePresence Conductor before XC2.4 allows remote attackers to cause a denial of service (mishandled exception and device reload) via a crafted media description, aka Bug IDs CSCus96593 and CSCun73192.

Affected products

Cisco Systems, Inc./Expressway Software
cpe:2.3:a:cisco:expressway_software:*:*:*:*:*:*:*:*
Range: <=x8.1.1
Cisco Systems, Inc./Telepresence Conductor
cpe:2.3:a:cisco:telepresence_conductor:*:prealpha0:*:*:*:*:*:*
Range: <=xc2.4
Cisco Systems, Inc./Telepresence Video Communication Server Software
cpe:2.3:a:cisco:telepresence_video_communication_server_software:*:*:*:*:*:*:*:*
Range: <=x8.1.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150311-vcsnvdVendor Advisory
www.securitytracker.com/id/1031910nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000