CVE-2015-4330

medium Cisco
CVSS v3 Base Score
6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS Score
0.2%
Exploitation probability in 30 days
Top 58% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
M
Confidentiality
C
Integrity
C
Availability
C
Published: September 2, 2015 (3906 days ago)
Last Modified: May 6, 2026
Vendor: Cisco
Source: NVD

Description

A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges for OS command execution via invalid parameters, aka Bug ID CSCuv10556.

CWE

CWE-78

Affected Products

cisco telepresence video communication server software

References

🔗 tools.cisco.com 🔗 www.securitytracker.com 🔗 tools.cisco.com 🔗 www.securitytracker.com