Vulnerabilities > Cisco > Telepresence Collaboration Endpoint

DATE CVE VULNERABILITY TITLE RISK
2023-01-20 CVE-2023-20002 Server-Side Request Forgery (SSRF) vulnerability in Cisco Roomos and Telepresence Collaboration Endpoint
A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input.
local
low complexity
cisco CWE-918
4.4
2023-01-20 CVE-2023-20008 Unspecified vulnerability in Cisco Roomos and Telepresence Collaboration Endpoint
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are in the local file system.
local
low complexity
cisco
7.1
2022-10-26 CVE-2022-20776 Path Traversal vulnerability in Cisco Telepresence Collaboration Endpoint
Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an attacker to conduct path traversal attacks, view sensitive data, or write arbitrary files on an affected device.
local
low complexity
cisco CWE-22
6.7
2022-10-26 CVE-2022-20811 Path Traversal vulnerability in Cisco Roomos and Telepresence Collaboration Endpoint
Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an attacker to conduct path traversal attacks, view sensitive data, or write arbitrary files on an affected device.
network
low complexity
cisco CWE-22
7.2
2022-10-26 CVE-2022-20953 Path Traversal vulnerability in Cisco Roomos and Telepresence Collaboration Endpoint
Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an attacker to conduct path traversal attacks, view sensitive data, or write arbitrary files on an affected device.
local
low complexity
cisco CWE-22
5.5
2022-10-26 CVE-2022-20954 Path Traversal vulnerability in Cisco Roomos and Telepresence Collaboration Endpoint
Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an attacker to conduct path traversal attacks, view sensitive data, or write arbitrary files on an affected device.
local
low complexity
cisco CWE-22
7.1
2022-10-26 CVE-2022-20955 Path Traversal vulnerability in Cisco Roomos and Telepresence Collaboration Endpoint
Multiple vulnerabilities in Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an attacker to conduct path traversal attacks, view sensitive data, or write arbitrary files on an affected device.
local
low complexity
cisco CWE-22
7.1
2022-07-06 CVE-2022-20768 Information Exposure Through Log Files vulnerability in Cisco Telepresence Collaboration Endpoint
A vulnerability in the logging component of Cisco TelePresence Collaboration Endpoint (CE) and RoomOS Software could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system.
network
low complexity
cisco CWE-532
4.9
2022-05-04 CVE-2022-20764 Unspecified vulnerability in Cisco Telepresence Collaboration Endpoint
Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service (DoS) condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destination.
network
low complexity
cisco
8.1
2022-05-04 CVE-2022-20794 Open Redirect vulnerability in Cisco Telepresence Collaboration Endpoint
Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service (DoS) condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destination.
network
low complexity
cisco CWE-601
4.7