CyberSec.Space Logo
Back to CVE Browser

CVE-2016-1468

HIGH
8.8
CVSS Severity Score
EPSS Score0.0560%
EPSS Percentile24.11th
PublishedAug 8, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5.2 allows remote authenticated users to execute arbitrary commands via crafted fields, aka Bug ID CSCuv12531.

Affected Platforms (CPE)

πŸ“¦
Cisco

Telepresence Video Communication Server

= x8.5.2

References & Advisories

πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160803-vcse
πŸ”— http://www.securityfocus.com/bid/92274
πŸ”— http://www.securitytracker.com/id/1036529
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160803-vcse
πŸ”— http://www.securityfocus.com/bid/92274
πŸ”— http://www.securitytracker.com/id/1036529

Related Vulnerabilities

CVE-2015-065310.0

The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1...

CVE-2017-37908.6

A vulnerability in the received packet parser of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) s...

CVE-2019-18458.6

A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Se...

CVE-2014-33687.8

Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.2 allow remote attackers to cause a denial o...