Vulnerabilities (CVE)

Filtered by vendor Cisco Subscribe
Filtered by product Telepresence System Software Ix
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-6276 1 Cisco 1 Telepresence System Software Ix 2024-11-21 5.0 MEDIUM N/A
Cisco TelePresence IX5000 8.0.3 stores a private key associated with an X.509 certificate under the web root with insufficient access control, which allows remote attackers to obtain cleartext versions of HTTPS traffic or spoof devices via a direct request to the certificate directory, aka Bug ID CSCuu63501.
CVE-2015-0611 1 Cisco 3 Telepresence Ix5000, Telepresence Ix5200, Telepresence System Software Ix 2024-11-21 6.5 MEDIUM N/A
The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote authenticated users to obtain HelpDesk-equivalent privileges by leveraging device-recovery authentication, aka Bug ID CSCus74174.