Search Results (Refine Search)
- Keyword (text search): cpe:2.3:h:cisco:telepresence_video_communication_server:-:*:expressway:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2018-5390 |
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service. Published: August 06, 2018; 4:29:01 PM -0400 |
V3.1: 7.5 HIGH V2.0: 7.8 HIGH |
CVE-2016-1400 |
Cisco TelePresence Video Communications Server (VCS) X8.x before X8.7.2 allows remote attackers to cause a denial of service (service disruption) via a crafted URI in a SIP header, aka Bug ID CSCuy43258. Published: May 24, 2016; 9:59:08 PM -0400 |
V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM |
CVE-2014-0675 |
The Expressway component in Cisco TelePresence Video Communication Server (VCS) uses the same default X.509 certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship, aka Bug ID CSCue07471. Published: January 22, 2014; 11:41:16 PM -0500 |
V3.x:(not available) V2.0: 6.4 MEDIUM |
CVE-2012-5444 |
Cisco TelePresence Video Communication Server (VCS) X7.0.3 does not properly process certain search rules, which allows remote attackers to create conferences via an unspecified Conductor request, aka Bug ID CSCub67989. Published: January 17, 2013; 10:55:01 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2012-0331 |
Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a crafted SIP packet, as demonstrated by a SIP INVITE message from a Tandberg device, aka Bug ID CSCtq73319. Published: February 29, 2012; 8:55:00 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2012-0330 |
Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (device crash) via a malformed SIP message, aka Bug ID CSCtr20426. Published: February 29, 2012; 8:55:00 PM -0500 |
V3.x:(not available) V2.0: 7.8 HIGH |