Security Advisory

CVE-2015-4315

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-08-20 00:00:00

Last updated 2024-08-06 06:11:12

Assigner cisco

State PUBLISHED

Description

The Call Policy Configuration page in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.3 improperly validates external DTDs, which allows remote authenticated users to read arbitrary files or cause a denial of service via a crafted XML document, aka Bug ID CSCuv31853.

← Browse all CVEs View on cve.org ↗