Arbitrary OS Command Execution Vulnerability in Cisco TelePresence Video Communication Server (VCS) X8.5.2

Arbitrary OS Command Execution Vulnerability in Cisco TelePresence Video Communication Server (VCS) X8.5.2

CVE-2015-4329 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

The administrator web interface in Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows remote authenticated users to execute arbitrary OS commands via crafted HTTP requests, aka Bug ID CSCuv11796.

Learn more about our Cis Benchmark Audit For Cisco.