VYPR
Vendor

Lifesize

Products
5
CVEs
4
Across products
7
Status
Private

Products

5

Recent CVEs

4
  • CVE-2018-25312MedApr 29, 2026
    risk 0.42cvss 6.5epss 0.01

    LifeSize ClearSea 3.1.4 contains directory traversal vulnerabilities that allow authenticated attackers to download and upload arbitrary files by manipulating path parameters in the smartgui interface. Attackers can exploit the upload endpoint with directory traversal sequences…

  • CVE-2011-2763Sep 2, 2011
    risk 0.06cvss epss 0.36

    The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) and 4.7.18 allows remote attackers to execute arbitrary commands via a modified request to the LSRoom_Remoting.doCommand function in gateway.php.

  • CVE-2019-7632Feb 8, 2019
    risk 0.00cvss epss 0.06

    LifeSize Team, Room, Passport, and Networker 220 devices allow Authenticated Remote OS Command Injection, as demonstrated by shell metacharacters in the support/mtusize.php mtu_size parameter. The lifesize default password for the cli account may sometimes be used for…

  • CVE-2011-2762Sep 2, 2011
    risk 0.00cvss epss 0.02

    The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF data and the LSRoom_Remoting.authenticate function in gateway.php.