CVE-2015-4327

Cisco TelePresence Video Communication Server Expressway X8.5.2 - Privilege Escalation via CLI Script Argument Injection

Title source: llm
STIX 2.1

Description

The CLI in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to obtain root privileges by writing script arguments to an unspecified file, aka Bug ID CSCuv12542.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/76408
Vendor Advisory vendor-advisory x_refsource_cisco
http://tools.cisco.com/security/center/viewAlert.x?alertId=40518
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1033332

Scores

EPSS 0.0041
EPSS Percentile 33.3%

Details

CWE
CWE-20
Status published
Products (1)
cisco/telepresence_video_communication_server_software x8.5.2
Published Aug 20, 2015
Tracked Since Feb 18, 2026