U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:h:cisco:telepresence_system_1000_mxp:-:*:*:*:*:*:*:*
  • CPE Name Search: true
There are 7 matching records.
Displaying matches 1 through 7.
Vuln ID Summary CVSS Severity
CVE-2014-2161

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45731.

Published: May 02, 2014; 6:55:08 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.8 HIGH
CVE-2014-2160

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45745.

Published: May 02, 2014; 6:55:08 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.8 HIGH
CVE-2014-2159

The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCtq78722.

Published: May 02, 2014; 6:55:08 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.8 HIGH
CVE-2014-2158

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45720.

Published: May 02, 2014; 6:55:08 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.8 HIGH
CVE-2014-2157

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45733.

Published: May 02, 2014; 6:55:08 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.1 HIGH
CVE-2014-2156

Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45739.

Published: May 02, 2014; 6:55:07 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.1 HIGH
CVE-2011-2544

Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Series F9.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via a crafted Call ID, as demonstrated by resultant cross-site request forgery (CSRF) attacks that change passwords or cause a denial of service, aka Bug ID CSCtq46488.

Published: September 23, 2011; 6:55:02 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 3.5 LOW