CVE-2015-4254

MEDIUM

6.8

CVSS Severity Score

EPSS Score0.0320%

EPSS Percentile10.22th

Published2015年7月10日

Last Modified2026年5月6日

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence Advanced Media Gateway devices with software 1.1(1.40) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu90732.

Affected Platforms (CPE)

📦

Cisco

Telepresence Advanced Media Gateway

= 1.1\(1.40\)

References & Advisories

🔗 http://tools.cisco.com/security/center/viewAlert.x?alertId=39797

相關漏洞威脅

CVE-2015-07139.0

The web framework in Cisco TelePresence Advanced Media Gateway Series Software before 1.1(1.40), Cisco TelePresence IP Gateway Ser...

CVE-2019-159667.7

A vulnerability in the web application of Cisco TelePresence Advanced Media Gateway could allow an authenticated, remote attacker ...

CVE-2015-098710.0

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password tra...

CVE-2015-843410.0

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and b...