Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2022-20812 CVE-2022-20813 |
| CWE-ID | CWE-22 CWE-158 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Expressway Series Server applications / Conferencing, Collaboration and VoIP solutions Cisco TelePresence Video Communication Server Server applications / Other server solutions |
| Vendor | Cisco Systems, Inc |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Path traversal
EUVDB-ID: #VU64962
Risk: Low
CVSSv4.0: 2.4 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:L/E:U/U:Clear]
CVE-ID: CVE-2022-20812
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences in the cluster database API. A remote administrator can send a specially crafted HTTP request and overwrite arbitrary files on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsExpressway Series: 14.0
Cisco TelePresence Video Communication Server: 14.0
CPE2.3- cpe:2.3:a:cisco_systems:expressway_series:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:expressway_series:14.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:cisco_telepresence_video_communication_server:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:cisco_telepresence_video_communication_server:14.0:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper Neutralization of Null Byte or NUL Character
EUVDB-ID: #VU64963
Risk: Medium
CVSSv4.0: 6.9 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-20813
CWE-ID:
CWE-158 - Improper Neutralization of Null Byte or NUL Character
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to improper certificate validation. A remote attacker can perform a man-in-the-middle attack and view the intercepted traffic in clear text or alter the contents of the traffic.
MitigationInstall updates from vendor's website.
Vulnerable software versionsExpressway Series: 14.0
Cisco TelePresence Video Communication Server: 14.0
CPE2.3- cpe:2.3:a:cisco_systems:expressway_series:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:expressway_series:14.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:cisco_telepresence_video_communication_server:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:cisco_telepresence_video_communication_server:14.0:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
