Cisco Telepresence Tc Software — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Telepresence Tc Software, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (27)
CVE-2014-2171 — CVSS 10.0 (critical): Heap-based buffer overflow in Cisco TelePresence TC Software 4.x through 6.x before 6.0.1 and TE Software 4.x and 6.0.x before 6.0.2 allows…
CVE-2016-1387 — CVSS 9.8 (critical): The XML API in TelePresence Codec (TC) 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, and 7.3.5 and Collaboration Endpoint (CE) 8.0.0…
CVE-2014-2169 — CVSS 9.0 (critical): Cisco TelePresence TC Software 4.x through 6.x before 6.2.0 and TE Software 4.x and 6.0 allow remote authenticated users to execute…
CVE-2014-2170 — CVSS 9.0 (critical): Cisco TelePresence TC Software 4.x and 5.x before 5.1.7 and 6.x before 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users…
CVE-2013-3379 — CVSS 8.3 (high): The firewall subsystem in Cisco TelePresence TC Software before 4.2 does not properly implement rules that grant access to hosts, which…
CVE-2014-2174 — CVSS 8.3 (high): Cisco TelePresence T, TelePresence TE, and TelePresence TC before 7.1 do not properly implement access control, which allows remote…
CVE-2014-2166 — CVSS 7.8 (high): The SIP implementation in Cisco TelePresence TC Software 4.x and TE Software 4.x allows remote attackers to cause a denial of service…
CVE-2014-2167 — CVSS 7.8 (high): The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial…
CVE-2013-3377 — CVSS 7.8 (high): Cisco TelePresence TC Software before 5.1.7 and TE Software before 4.1.3 allow remote attackers to cause a denial of service (device…
CVE-2013-3378 — CVSS 7.8 (high): Cisco TelePresence TC Software before 6.1 and TE Software before 4.1.3 allow remote attackers to cause a denial of service (temporary…
CVE-2014-2162 — CVSS 7.8 (high): The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial…
CVE-2014-2163 — CVSS 7.8 (high): The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x allows remote attackers to cause a denial of…
CVE-2014-2164 — CVSS 7.8 (high): The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial…
CVE-2014-2165 — CVSS 7.8 (high): The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to cause a denial…
CVE-2014-2175 — CVSS 7.8 (high): Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allow remote attackers to cause a denial of service (memory…
CVE-2015-0722 — CVSS 7.8 (high): The network drivers in Cisco TelePresence T, Cisco TelePresence TE, and Cisco TelePresence TC before 7.3.2 allow remote attackers to cause…
CVE-2014-2168 — CVSS 7.6 (high): Buffer overflow in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows remote attackers to execute arbitrary code…
CVE-2017-6648 — CVSS 7.5 (high): A vulnerability in the Session Initiation Protocol (SIP) of the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software…
CVE-2014-2173 — CVSS 7.2 (high): Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 do not properly restrict access to the serial port, which allows…
CVE-2014-2172 — CVSS 6.6 (medium): Buffer overflow in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allows local users to gain privileges by…
CVE-2015-4271 — CVSS 6.4 (medium): Cisco TelePresence TC before 7.3.4 on Integrator C devices allows remote attackers to bypass authentication via vectors involving multiple…
CVE-2015-0697 — CVSS 5.8 (medium): Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration…
CVE-2016-6459 — CVSS 5.5 (medium): Cisco TelePresence endpoints running either CE or TC software contain a vulnerability that could allow an authenticated, local attacker to…
CVE-2015-0770 — CVSS 5.0 (medium): CRLF injection vulnerability in Cisco TelePresence TC 6.x before 6.3.4 and 7.x before 7.3.3 on Integrator C SX20 devices allows remote…
CVE-2015-0696 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisco TelePresence Collaboration Desk and…
CVE-2013-3401 — CVSS 4.3 (medium): The SIP implementation in Cisco TelePresence TC Software allows remote attackers to trigger unintended use of NOTIFY messages via…
CVE-2013-3405 — CVSS 4.3 (medium): The web portal in TC software on Cisco TelePresence endpoints does not require an exact password match during a login attempt by a user who…