CVE-2017-3815
MEDIUMCisco TelePresence Server <4.3 - Privilege Escalation
Title source: llmDescription
An API Privilege vulnerability in Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to emulate Cisco TelePresence Server endpoints. Affected Products: This vulnerability affects Cisco TelePresence Server MSE 8710 Processors that are running a software release prior to Cisco TelePresence Software Release 4.3 and are running in locally managed mode. The vulnerable API was deprecated in Cisco TelePresence Software Release 4.3. More Information: CSCvc37616.
Scores
CVSS v3
5.3
EPSS
0.0013
EPSS Percentile
32.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Classification
CWE
CWE-319
Status
published
Affected Products (4)
cisco/telepresence_server_software
cisco/telepresence_server_software
cisco/telepresence_server_software
n/a/Cisco TelePresence Server
< Cisco TelePresence Server
Timeline
Published
Mar 17, 2017
Tracked Since
Feb 18, 2026