漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
Cisco TelePresence Collaboration Endpoint, TelePresence Codec, and RoomOS Software Path Traversal Vulnerability
漏洞信息
A vulnerability in the video endpoint API (xAPI) of Cisco TelePresence Collaboration Endpoint (CE) Software, Cisco TelePresence Codec (TC) Software, and Cisco RoomOS Software could allow an authenticated, remote attacker to conduct directory traversal attacks on an affected device. The vulnerability is due to insufficient validation of user-supplied input to the xAPI of the affected software. An attacker could exploit this vulnerability by sending a crafted request to the xAPI. A successful exploit could allow the attacker to read and write arbitrary files in the system. To exploit this vulnerability, an attacker would need either an In-Room Control or administrator account.
漏洞信息
N/A
漏洞
对路径名的限制不恰当(路径遍历)
漏洞
Cisco TelePresence CE、Cisco TelePresence Codec和Cisco RoomOS 路径遍历漏洞
漏洞信息
Cisco TelePresence Collaboration Endpoint Software是美国思科(Cisco)公司的一套协作终端软件。 Cisco TelePresence CE,Cisco TelePresence Codec和Cisco RoomOS中存在路径遍历漏洞,该漏洞源于程序没有充分验证发送到xAPI(受影响软件)上的用户输入。攻击者可通过向xAPI发送特制的请求利用该漏洞在系统中读写任意文件。
漏洞信息
N/A
漏洞
N/A