CVE-2015-4327
Cisco TelePresence Video Communication Server Expressway X8.5.2 - Privilege Escalation via CLI Script Argument Injection
Title source: llmDescription
The CLI in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to obtain root privileges by writing script arguments to an unspecified file, aka Bug ID CSCuv12542.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76408
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/viewAlert.x?alertId=40518
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1033332
Scores
EPSS
0.0041
EPSS Percentile
33.3%
Details
CWE
CWE-20
Status
published
Products (1)
cisco/telepresence_video_communication_server_software
x8.5.2
Published
Aug 20, 2015
Tracked Since
Feb 18, 2026