cvedb.io
CVE-2015-4316
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2015-08-20T10:59:07.903 · Last modified 2026-06-17T00:27:05.390

Summary

The Mobile and Remote Access (MRA) endpoint-validation feature in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 improperly validates the phone line used for registration, which allows remote authenticated users to conduct impersonation attacks via a crafted registration, aka Bug ID CSCuv40396.

Affected products

cisco — telepresence_video_communication_server_software

Does this affect you?

Add your gear to cvedb and we'll alert you only when cisco ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.