Vulnerability in Cisco Telepresence_advanced_media_gateway
CVE-2015-0713
The web framework in Cisco TelePresence Advanced Media Gateway Series Software before 1.1(1.40), Cisco TelePresence IP Gateway Series Software, Cisco TelePresence IP VCR Series Software before 3.0(1.27), Cisco TelePresence ISDN Gateway Sof…
EPSS: 0.005 (66.0th percentile) — read the EPSS interpretation.
Affected products
- Cisco Telepresence_advanced_media_gateway — versions 1.0\(.1.13\), 1.1\(.1.14\), 1.1\(1.34\)
- Cisco Telepresence_ip_gateway — versions 2.0.1.7, 2.0.1.11, 2.0.3.34
- Cisco Telepresence_ip_vcr_1.0_converter — versions 1.0\(1.9\)
- Cisco Telepresence_ip_vcr_2.4 — versions 1.2
- Cisco Telepresence_ip_vcr_3.0 — versions 1.22, 1.24
- Cisco Telepresence_isdn_gw_3241 — versions 2.0\(1.51\), 2.1\(1.22\), 2.1\(1.43\)
- Cisco Telepresence_mcu_software — versions 4.1\(1.51\), 4.1\(1.59\), 4.2\(1.43\)
- Cisco Telepresence_serial_gateway — versions 1.0.1.23, 1.0.1.34, 1.0.1.38
- Cisco Telepresence_server_software — versions 2.1\(1.33\), 2.1\(1.37\), 2.2\(1.43\)
- Cisco Telepresence_supervisor_mse_8050_software — versions 2.1\(1.18\), 2.2\(1.17\), 2.3\(1.32\)
Weakness classification (CWE)
References
- 20150513 Command Injection Vulnerability in Multiple Cisco TelePresence Products (x_refsource_CISCO, vendor-advisory, Vendor Advisory)