Vulnerabilities > Cisco > Telepresence System 1000 MXP
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-05-02 | CVE-2014-2161 | Improper Input Validation vulnerability in Cisco products The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45731. | 7.8 |
2014-05-02 | CVE-2014-2160 | Improper Input Validation vulnerability in Cisco products The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45745. | 7.8 |
2014-05-02 | CVE-2014-2159 | Improper Input Validation vulnerability in Cisco products The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCtq78722. | 7.8 |
2014-05-02 | CVE-2014-2158 | Improper Input Validation vulnerability in Cisco products Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45720. | 7.8 |
2014-05-02 | CVE-2014-2157 | Improper Input Validation vulnerability in Cisco products Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45733. | 7.1 |
2014-05-02 | CVE-2014-2156 | Improper Input Validation vulnerability in Cisco products Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCty45739. | 7.1 |
2011-09-23 | CVE-2011-2544 | Cross-Site Scripting vulnerability in Cisco products Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Series F9.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via a crafted Call ID, as demonstrated by resultant cross-site request forgery (CSRF) attacks that change passwords or cause a denial of service, aka Bug ID CSCtq46488. | 3.5 |