Cisco Cisco Telepresence Video Communication Server (Vcs) Expressway
23 CVEs affecting Cisco Cisco Telepresence Video Communication Server (Vcs) Expressway. Latest disclosed: 2025-02-05. Critical: 8, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-20254 | Critical | 9.6 | 2024-02-07 | Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to… |
CVE-2024-20252 | Critical | 9.6 | 2024-02-07 | Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to… |
CVE-2023-20192 | Critical | 9.6 | 2023-06-28 | Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated attacker with Administ… |
CVE-2023-20105 | Critical | 9.6 | 2023-06-28 | A vulnerability in the change password functionality of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenti… |
CVE-2022-20813 | Critical | 9.0 | 2022-07-06 | Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS… |
CVE-2022-20812 | Critical | 9.0 | 2022-07-06 | Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS… |
CVE-2022-20755 | Critical | 9.0 | 2022-04-06 | Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) coul… |
CVE-2022-20754 | Critical | 9.0 | 2022-04-06 | Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) coul… |
CVE-2024-20255 | High | 8.2 | 2024-02-07 | A vulnerability in the SOAP API of Cisco Expressway Series and Cisco TelePresence Video Communication Server could allow an unauthenticated, remote attacker to… |
CVE-2022-20814 | High | 7.4 | 2024-11-15 | A vulnerability in the certificate validation of Cisco Expressway-C and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to gai… |
CVE-2022-20853 | High | 7.4 | 2024-11-15 | A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to conduct a cr… |
CVE-2021-34716 | Medium | 6.7 | 2021-08-18 | A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authent… |
CVE-2023-20209 | Medium | 6.5 | 2023-08-16 | A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authent… |
CVE-2020-3482 | Medium | 6.5 | 2020-11-18 | A vulnerability in the Traversal Using Relays around NAT (TURN) server component of Cisco Expressway software could allow an unauthenticated, remote attacker t… |
CVE-2025-20179 | Medium | 6.1 | 2025-02-05 | A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to conduct a cross-site script… |
CVE-2024-20492 | Medium | 6.0 | 2024-10-02 | A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated, local attacker to perform command injection attacks on the und… |
CVE-2020-3596 | Medium | 5.9 | 2020-10-08 | A vulnerability in the Session Initiation Protocol (SIP) of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unau… |
CVE-2024-20400 | Medium | 4.7 | 2024-07-17 | A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to redirect a user to a malici… |
CVE-2021-34715 | Medium | 4.7 | 2021-08-18 | A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authentica… |
CVE-2024-20497 | Medium | 4.3 | 2024-09-04 | A vulnerability in Cisco Expressway Edge (Expressway-E) could allow an authenticated, remote attacker to masquerade as another user on an affected system. T… |