CVE-2017-3815
Last modified
CVE-2017-3815 is a vulnerability of currently unknown severity. An API Privilege vulnerability in Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to emulate Cisco TelePresence Server endpoints. Affected Products: This vulnerability affects Cisco TelePresence Server MSE 8710 Processors that are running a software release prior to Cisco TelePresence Software Release 4.3 and are running in locally managed mode. EPSS estimates a 1.02% chance of exploitation in the next 30 days.
Description
An API Privilege vulnerability in Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to emulate Cisco TelePresence Server endpoints. Affected Products: This vulnerability affects Cisco TelePresence Server MSE 8710 Processors that are running a software release prior to Cisco TelePresence Software Release 4.3 and are running in locally managed mode. The vulnerable API was deprecated in Cisco TelePresence Software Release 4.3. More Information: CSCvc37616.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Telepresence Server Software | 4.2\(4.17\) |
| Cisco | Telepresence Server Software | 4.2\(4.18\) |
| Cisco | Telepresence Server Software | 4.2\(4.19\) |
References
- http://www.securityfocus.com/bid/96922Third Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/96922Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-3815?
How severe is CVE-2017-3815?
How do I fix CVE-2017-3815?
Are you affected by CVE-2017-3815?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST