Vulnerabilities > Cisco > Telepresence System 1000 MXP

DATE CVE VULNERABILITY TITLE RISK
2014-05-02 CVE-2014-2161 Improper Input Validation vulnerability in Cisco products
The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45731.
network
low complexity
cisco CWE-20
7.8
7.8
2014-05-02 CVE-2014-2160 Improper Input Validation vulnerability in Cisco products
The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45745.
network
low complexity
cisco CWE-20
7.8
7.8
2014-05-02 CVE-2014-2159 Improper Input Validation vulnerability in Cisco products
The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCtq78722.
network
low complexity
cisco CWE-20
7.8
7.8
2014-05-02 CVE-2014-2158 Improper Input Validation vulnerability in Cisco products
Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45720.
network
low complexity
cisco CWE-20
7.8
7.8
2014-05-02 CVE-2014-2157 Improper Input Validation vulnerability in Cisco products
Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45733.
network
cisco CWE-20
7.1
7.1
2014-05-02 CVE-2014-2156 Improper Input Validation vulnerability in Cisco products
Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45739.
network
cisco CWE-20
7.1
7.1
2011-09-23 CVE-2011-2544 Cross-Site Scripting vulnerability in Cisco products
Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Series F9.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via a crafted Call ID, as demonstrated by resultant cross-site request forgery (CSRF) attacks that change passwords or cause a denial of service, aka Bug ID CSCtq46488.
network
cisco CWE-79
3.5
3.5