CyberSec.Space Logo
Back to CVE Browser

CVE-2019-15966

HIGH
7.7
CVSS Severity Score
EPSS Score0.0570%
EPSS Percentile43.35th
PublishedNov 5, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A vulnerability in the web application of Cisco TelePresence Advanced Media Gateway could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to the lack of input validation in the web application. An attacker could exploit this vulnerability by sending a crafted authenticated HTTP request to the device. An exploit could allow the attacker to stop services on an affected device. The device may become inoperable and results in a denial of service (DoS) condition.

Affected Platforms (CPE)

📦
Cisco

Telepresence Advanced Media Gateway

= 1.1

References & Advisories

🔗 https://quickview.cloudapps.cisco.com/quickview/bug/CSCvr69362
🔗 https://quickview.cloudapps.cisco.com/quickview/bug/CSCvr69362

Related Vulnerabilities

CVE-2015-07139.0

The web framework in Cisco TelePresence Advanced Media Gateway Series Software before 1.1(1.40), Cisco TelePresence IP Gateway Ser...

CVE-2015-42546.8

Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence Advanced Media Gateway devices with software 1.1(1.40) allow...

CVE-2019-002010.0

Juniper ATP ships with hard coded credentials in the Web Collector instance which gives an attacker the ability to take full contr...

CVE-2019-002210.0

Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an attacker the ability to take full contro...