CyberSec.Space Logo
返回 CVE 浏览器

CVE-2010-1355

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.1970%
EPSS Percentile27.46th
Published2010年4月13日
Last Modified2026年4月29日

Vulnerability Description

Cross-site scripting (XSS) vulnerability on the TANDBERG Video Communication Server (VCS) before X5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Reference ID 66316.

Affected Platforms (CPE)

📦
Vsecurity

Tandberg Video Communication Server

<= x4.3.0
📦
Vsecurity

Tandberg Video Communication Server

= x1.0.0
📦
Vsecurity

Tandberg Video Communication Server

= x1.1.0
📦
Vsecurity

Tandberg Video Communication Server

= x1.2.0
📦
Vsecurity

Tandberg Video Communication Server

= x2.0.0
📦
Vsecurity

Tandberg Video Communication Server

= x2.1.0
📦
Vsecurity

Tandberg Video Communication Server

= x3.0.0
📦
Vsecurity

Tandberg Video Communication Server

= x3.1.0
📦
Vsecurity

Tandberg Video Communication Server

= x4.1.0
📦
Vsecurity

Tandberg Video Communication Server

= x4.2.0
📦
Vsecurity

Tandberg Video Communication Server

= x4.2.1

References & Advisories

🔗 http://ftp.tandberg.com/pub/software/vcs/TANDBERG%20Video%20Communication%20Server%20Software%20Release%20Notes%20%28X5%29.pdf
🔗 http://ftp.tandberg.com/pub/software/vcs/TANDBERG%20Video%20Communication%20Server%20Software%20Release%20Notes%20%28X5%29.pdf

相关漏洞威胁

CVE-2009-450910.0

The administrative web console on the TANDBERG Video Communication Server (VCS) before X4.3 uses predictable session cookies in (1...

CVE-2010-135610.0

Unspecified vulnerability on the TANDBERG Video Communication Server (VCS) before X5.0 allows remote attackers to execute arbitrar...

CVE-2009-45108.5

The SSH service on the TANDBERG Video Communication Server (VCS) before X5.1 uses a fixed DSA key, which makes it easier for remot...

CVE-2012-03317.5

Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service (de...