Vulnerability in Cisco Telepresence_video_communication_server_software

CVE-2015-4325

The process-management implementation in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges by terminating a firestarter.py supervised process and then triggering the restart of a pr…

EPSS: 0.001 (26.1th percentile) — read the EPSS interpretation.

Affected products

Cisco Telepresence_video_communication_server_software — versions x8.5.2
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

20151006 Cisco TelePresence Video Communication Server (VCS) Expressway Privilege Escalation Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1033751 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)