VYPR

Telepresence Video Communication Server

by Cisco Systems, Inc.

CVEs (73)

  • CVE-2015-0752May 29, 2015
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in Cisco TelePresence Video Communication Server (VCS) X8.5.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCut27635.

  • CVE-2015-0653Mar 13, 2015
    risk 0.00cvss epss 0.04

    The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1.2, and X8.2 before X8.2.2 and Cisco TelePresence Conductor before X2.3.1 and XC2.4 before XC2.4.1 allows remote attackers to bypass authentication…

  • CVE-2015-0652Mar 13, 2015
    risk 0.00cvss epss 0.02

    The Session Description Protocol (SDP) implementation in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X8.2 and Cisco TelePresence Conductor before XC2.4 allows remote attackers to cause a denial of service (mishandled exception and device…

  • CVE-2015-0579Jan 14, 2015
    risk 0.00cvss epss 0.02

    Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway allow remote attackers to cause a denial of service (memory and CPU consumption, and partial outage) via crafted SIP packets, aka Bug ID CSCur12473.

  • CVE-2014-3370Oct 19, 2014
    risk 0.00cvss epss 0.02

    Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.1.1 allow remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug IDs CSCum60442 and CSCum60447.

  • CVE-2014-3369Oct 19, 2014
    risk 0.00cvss epss 0.02

    The SIP IX implementation in Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.1.1 allows remote attackers to cause a denial of service (device reload) via crafted SDP packets, aka Bug ID CSCuo42252.

  • CVE-2014-3368Oct 19, 2014
    risk 0.00cvss epss 0.04

    Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.2 allow remote attackers to cause a denial of service (device reload) via a high rate of crafted packets, aka Bug ID CSCui06507.

  • CVE-2014-0675Jan 23, 2014
    risk 0.00cvss epss 0.02

    The Expressway component in Cisco TelePresence Video Communication Server (VCS) uses the same default X.509 certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging…

  • CVE-2014-0662Jan 22, 2014
    risk 0.00cvss epss 0.02

    The SIP module in Cisco TelePresence Video Communication Server (VCS) before 8.1 allows remote attackers to cause a denial of service (process failure) via a crafted SDP message, aka Bug ID CSCue97632.

  • CVE-2012-5444Jan 17, 2013
    risk 0.00cvss epss 0.01

    Cisco TelePresence Video Communication Server (VCS) X7.0.3 does not properly process certain search rules, which allows remote attackers to create conferences via an unspecified Conductor request, aka Bug ID CSCub67989.

  • CVE-2012-0331Mar 1, 2012
    risk 0.00cvss epss 0.01

    Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a crafted SIP packet, as demonstrated by a SIP INVITE message from a Tandberg device, aka Bug ID CSCtq73319.

  • CVE-2012-0330Mar 1, 2012
    risk 0.00cvss epss 0.01

    Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a malformed SIP message, aka Bug ID CSCtr20426.

  • CVE-2011-3294Oct 19, 2011
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in the login page in the administrative interface on Cisco TelePresence Video Communication Servers (VCS) with software before X7.0 allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header, aka Bug ID…

Page 4 of 4