Cisco Telepresence Video Communication Server — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Telepresence Video Communication Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (42)
CVE-2023-20192 — CVSS 9.6 (critical): Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated…
CVE-2023-20105 — CVSS 9.6 (critical): A vulnerability in the change password functionality of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS)…
CVE-2022-20812 — CVSS 9.0 (critical): Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video…
CVE-2022-20813 — CVSS 9.0 (critical): Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video…
CVE-2022-20754 — CVSS 9.0 (critical): Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video…
CVE-2022-20755 — CVSS 9.0 (critical): Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video…
CVE-2016-1468 — CVSS 8.8 (high): The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5.2 allows remote authenticated users to…
CVE-2017-3790 — CVSS 8.6 (high): A vulnerability in the received packet parser of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) software…
CVE-2019-1845 — CVSS 8.6 (high): A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service…
CVE-2012-0330 — CVSS 7.8 (high): Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device…
CVE-2016-1400 — CVSS 7.5 (high): Cisco TelePresence Video Communications Server (VCS) X8.x before X8.7.2 allows remote attackers to cause a denial of service (service…
CVE-2018-0358 — CVSS 7.5 (high): A vulnerability in the file descriptor handling of Cisco TelePresence Video Communication Server (VCS) Expressway could allow an…
CVE-2018-0409 — CVSS 7.5 (high): A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Cisco…
CVE-2012-0331 — CVSS 7.5 (high): Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device…
CVE-2022-20814 — CVSS 7.4 (high): A vulnerability in the certificate validation of Cisco Expressway-C and Cisco TelePresence VCS could allow an unauthenticated…
CVE-2022-20853 — CVSS 7.4 (high): A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote…
CVE-2018-15430 — CVSS 7.2 (high): A vulnerability in the administrative web interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS)…
CVE-2011-2538 — CVSS 7.2 (high): Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability which allows remote, authenticated…
CVE-2019-1720 — CVSS 6.8 (medium): A vulnerability in the XML API of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an…
CVE-2017-6790 — CVSS 6.8 (medium): A vulnerability in the Session Initiation Protocol (SIP) on the Cisco TelePresence Video Communication Server (VCS) could allow an…
CVE-2021-34716 — CVSS 6.7 (medium): A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS)…
CVE-2019-1721 — CVSS 6.5 (medium): A vulnerability in the phone book feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an…
CVE-2020-3482 — CVSS 6.5 (medium): A vulnerability in the Traversal Using Relays around NAT (TURN) server component of Cisco Expressway software could allow an…
CVE-2019-1722 — CVSS 6.5 (medium): A vulnerability in the FindMe feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an…
CVE-2023-20209 — CVSS 6.5 (medium): A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS)…
CVE-2016-1444 — CVSS 6.5 (medium): The Mobile and Remote Access (MRA) component in Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7 and Expressway X8.1…
CVE-2014-0675 — CVSS 6.4 (medium): The Expressway component in Cisco TelePresence Video Communication Server (VCS) uses the same default X.509 certificate across different…
CVE-2019-12705 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS)…
CVE-2024-20492 — CVSS 6.0 (medium): A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated, local attacker to perform command…
CVE-2020-3596 — CVSS 5.9 (medium): A vulnerability in the Session Initiation Protocol (SIP) of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS)…
CVE-2019-1872 — CVSS 5.3 (medium): A vulnerability in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway Series software could allow an unauthenticated…
CVE-2015-0579 — CVSS 5.0 (medium): Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway allow remote attackers to cause a denial of service (memory and…
CVE-2019-1679 — CVSS 5.0 (medium): A vulnerability in the web interface of Cisco TelePresence Conductor, Cisco Expressway Series, and Cisco TelePresence Video Communication…
CVE-2021-34715 — CVSS 4.7 (medium): A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could…
CVE-2024-20400 — CVSS 4.7 (medium): A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to…
CVE-2022-20807 — CVSS 4.3 (medium): Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video…
CVE-2022-20809 — CVSS 4.3 (medium): Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video…
CVE-2022-20806 — CVSS 4.3 (medium): Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video…
CVE-2017-12287 — CVSS 4.3 (medium): A vulnerability in the cluster database (CDB) management component of Cisco Expressway Series Software and Cisco TelePresence Video…
CVE-2015-0752 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Cisco TelePresence Video Communication Server (VCS) X8.5.1 allows remote attackers to inject…
CVE-2019-1854 — CVSS 4.1 (medium): A vulnerability in the management web interface of Cisco Expressway Series could allow an authenticated, remote attacker to perform a…