Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The password-change feature in the administrative web interface in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1 improperly performs authorization, which allows remote authenticated users to reset arbitrary active-user passwords via unspecified vectors, aka Bug ID CSCuv12338.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco TelePresence Video Communication Server Expressway 安全漏洞
Vulnerability Description
Cisco TelePresence Video Communication Server(VCS)Expressway是美国思科(Cisco)公司的一款网真视频通信服务器,它能够与统一通信和语音通信环境集成,从而为使用各种通信工具的最终用户提供最佳体验。 Cisco TelePresence VCS Expressway X8.5.1版本的Web管理界面中的Password Change功能存在安全漏洞,该漏洞源于程序没有正确执行身份验证操作。攻击者可通过发送特制的数据包利用该漏洞更改用户密码。
CVSS Information
N/A
Vulnerability Type
N/A