CVE-2015-4329

medium Cisco
CVSS v3 Base Score
6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P
EPSS Score
0.5%
Exploitation probability in 30 days
Top 36% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: August 20, 2015 (3920 days ago)
Last Modified: May 6, 2026
Vendor: Cisco
Source: NVD

Description

The administrator web interface in Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows remote authenticated users to execute arbitrary OS commands via crafted HTTP requests, aka Bug ID CSCuv11796.

CWE

CWE-20

Affected Products

cisco telepresence video communication server software

References

🔗 tools.cisco.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 tools.cisco.com 🔗 www.securityfocus.com