Personalise your experience

Get the latest insights relevant to your sector.

I don't want to personalise my experience
Skip to main content Skip to primary navigation Skip to search Skip to footer
BT Global
  • More BT Websites
  • English
  • Français
  • Deutsch
  • Español
  • Italiano
  • Türkiye
  • 中国
  • 日本
Home My Account Support centre Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities
· 27 Feb 2023

Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities

  • Overview
  • What do you need to do?
  • Service notice

Overview

Multiple vulnerabilities exist in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). These vulnerabilities could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device.

Full description of the vulnerability is available on the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-filewrite-bsFVwueV

What do you need to do?

1.    Confirm whether you are using Cisco Expressway Series and Cisco TelePresence VCS Release. If you aren’t using this product, no action is required.

2.   If you’re using Cisco Expressway Series and Cisco TelePresence VCS, upgrade the firmware version of this product to 14.0.7 or higher.

3.   To get relevant software, go to Cisco’s Software Download page. Log in will be required to your Cisco’s CCO download repository for this page.

Service notice

If you haven't already done so, bookmark this website and register your details to receive email alerts.

Cookies
Terms of use
Codes of practice
Privacy policy
Accessibility