CVE-2015-0620

CVE-2015-0620

EPSS 1.3%

The XML parser in Cisco TelePresence Management Suite (TMS) 14.3(.2) and earlier does not properly handle external entities, which allows remote authenticated users to cause a denial of service via POST requests, aka Bug ID CSCus51494.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/100924 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0620 http://tools.cisco.com/security/center/viewAlert.x?alertId=37491 http://www.securitytracker.com/id/1031753