Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Java Servlet framework on Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x does not require administrative authentication for unspecified actions, which allows remote attackers to execute arbitrary code via a crafted request, aka Bug ID CSCtf01253.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco TelePresence Multipoint Switch Java Servlet框架任意代码执行漏洞
Vulnerability Description
Cisco TelePresence是美国思科(Cisco)公司的一套被称为“网真”系统的视频会议解决方案。该方案提供音频、视频空间等组件,可为远程参会者提供一个“面对面”的虚拟会议室效果。 带有1.0.x,1.1.x,1.5.x,以及1.6.x版本软件的Cisco TelePresence Multipoint Switch(CTMS)设备的Java Servlet框架没有为未明操作请求管理认证。远程认证用户可以借助特制请求执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A