CVE-2016-1387
First published: Thu May 05 2016(Updated: )
The XML API in TelePresence Codec (TC) 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, and 7.3.5 and Collaboration Endpoint (CE) 8.0.0, 8.0.1, and 8.1.0 in Cisco TelePresence Software mishandles authentication, which allows remote attackers to execute control commands or make configuration changes via an API request, aka Bug ID CSCuz26935.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco TelePresence TC Software | =7.2.0 | |
| Cisco TelePresence TC Software | =7.2.1 | |
| Cisco TelePresence TC Software | =7.3.0 | |
| Cisco TelePresence TC Software | =7.3.1 | |
| Cisco TelePresence TC Software | =7.3.2 | |
| Cisco TelePresence TC Software | =7.3.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/tags
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco telepresence tc software
- version/cisco telepresence tc software/7.2.0
- version/cisco telepresence tc software/7.2.1
- version/cisco telepresence tc software/7.3.0
- version/cisco telepresence tc software/7.3.1
- version/cisco telepresence tc software/7.3.2
- version/cisco telepresence tc software/7.3.3