) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:cisco:telepresence_tc_software:-
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2013-3405 |
The web portal in TC software on Cisco TelePresence endpoints does not require an exact password match during a login attempt by a user who has not configured a password, which allows remote attackers to bypass authentication by sending an arbitrary password, aka Bug ID CSCud96071. Published: July 10, 2013; 4:55:02 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2013-3401 |
The SIP implementation in Cisco TelePresence TC Software allows remote attackers to trigger unintended use of NOTIFY messages via unspecified vectors, aka Bug ID CSCud96080. Published: July 01, 2013; 11:43:34 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2013-3379 |
The firewall subsystem in Cisco TelePresence TC Software before 4.2 does not properly implement rules that grant access to hosts, which allows remote attackers to obtain shell access with root privileges by leveraging connectivity to the management network, aka Bug ID CSCts37781. Published: June 21, 2013; 9:57:25 AM -0400 |
V3.x:(not available) V2.0: 8.3 HIGH |
| CVE-2013-3378 |
Cisco TelePresence TC Software before 6.1 and TE Software before 4.1.3 allow remote attackers to cause a denial of service (temporary device hang) via crafted SIP packets, aka Bug ID CSCuf89557. Published: June 21, 2013; 9:57:25 AM -0400 |
V3.x:(not available) V2.0: 7.8 HIGH |
| CVE-2013-3377 |
Cisco TelePresence TC Software before 5.1.7 and TE Software before 4.1.3 allow remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCue01743. Published: June 21, 2013; 9:57:25 AM -0400 |
V3.x:(not available) V2.0: 7.8 HIGH |