CVE-2015-0653

CVE Database · CVE-2015-0653

CVE-2015-0653

· N/AModified

CVSS v3.1

N/A

EPSS

4.37%

Published

Mar 12, 2015

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1.2, and X8.2 before X8.2.2 and Cisco TelePresence Conductor before X2.3.1 and XC2.4 before XC2.4.1 allows remote attackers to bypass authentication via crafted login parameters, aka Bug IDs CSCur02680 and CSCur05556.

Weaknesses (CWE)

CWE-287

Affected Products (8)

cisco · expressway_software (up to x7.2.4)vulnerable

cisco · expressway_software (up to x8.1.2)vulnerable

cisco · expressway_software (up to x8.2.2)vulnerable

cisco · telepresence_conductor (up to x2.3.1)vulnerable

cisco · telepresence_conductor (up to xc2.4.1)vulnerable

cisco · telepresence_video_communication_server_software (up to x7.2.4)vulnerable

cisco · telepresence_video_communication_server_software (up to x8.1.2)vulnerable

cisco · telepresence_video_communication_server_software (up to x8.2.2)vulnerable

References (4)