CVE-2015-6318
Cisco TelePresence Video Communication Server Expressway X8.5.1 and X8.5.2 - Arbitrary File Write via Symlink Attack
Title source: llmDescription
Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1 and X8.5.2 allows local users to write to arbitrary files via an unspecified symlink attack, aka Bug ID CSCuv11969.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1033781
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151007-vcs
Scores
EPSS
0.0036
EPSS Percentile
27.6%
Details
CWE
CWE-20
Status
published
Products (2)
cisco/telepresence_video_communication_server_software
x8.5.1
cisco/telepresence_video_communication_server_software
x8.5.2
Published
Oct 12, 2015
Tracked Since
Feb 18, 2026