CVE-2015-4254

MEDIUM

6.8

CVSS Severity Score

EPSS Score0.0320%

EPSS Percentile10.22th

PublishedJul 10, 2015

Last ModifiedMay 6, 2026

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence Advanced Media Gateway devices with software 1.1(1.40) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu90732.

Affected Platforms (CPE)

📦

Cisco

Telepresence Advanced Media Gateway

= 1.1\(1.40\)

References & Advisories

🔗 http://tools.cisco.com/security/center/viewAlert.x?alertId=39797

Related Vulnerabilities

CVE-2015-07139.0

The web framework in Cisco TelePresence Advanced Media Gateway Series Software before 1.1(1.40), Cisco TelePresence IP Gateway Ser...

CVE-2019-159667.7

A vulnerability in the web application of Cisco TelePresence Advanced Media Gateway could allow an authenticated, remote attacker ...

CVE-2015-098710.0

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password tra...

CVE-2015-034110.0

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X a...