Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The administrative web console on the TANDBERG Video Communication Server (VCS) before X4.3 uses predictable session cookies in (1) tandberg/web/lib/secure.php and (2) tandberg/web/user/lib/secure.php, which makes it easier for remote attackers to bypass authentication, and execute arbitrary code by loading a custom software update, via a crafted "Cookie: tandberg_login=" HTTP header.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Vsecurity TANDBERG Video Communication Server 多个远程漏洞
Vulnerability Description
Tandberg Video Communication Server(VCS) 视讯通讯服务器具备支持SIP/H.323、穿越防火墙、多方来电转接等3大功能。 TANDBERG Video Communication Server (VCS)上运行的管理网络控制台在(1) tandberg/web/lib/secure.php 和(2) tandberg/web/user/lib/secure.php使用可预测的会话cookie,远程攻击者可通过特制“Cookie: tandberg_login=”HT
CVSS Information
N/A
Vulnerability Type
N/A