Personalise your experience

Get the latest insights relevant to your sector.

I don't want to personalise my experience
Skip to main content Skip to primary navigation Skip to search Skip to footer
BT Global
  • More BT Websites
  • English
  • Français
  • Deutsch
  • Español
  • Italiano
  • Türkiye
  • 中国
  • 日本
Home My Account Support centre Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities
Service updates · 12 Oct 2022

Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities

  • Overview
  • What do you need to do?

Overview

 

Multiple vulnerabilities exist in the API and in the web-based management interface of Cisco Expressway Series Software and Cisco TelePresence Video Communication Server (VCS) Software. They could allow a remote attacker to bypass certificate validation or conduct cross-site request forgery attacks on an affected device.

Full description of the vulnerability is available on the following link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-csrf-sqpsSfY6

What do you need to do?

1.   Confirm your Cisco Expressway Series and Cisco TelePresence VCS Release version. If the version of your software is 14.0.9 or 14.2 or higher, no action is required.

2.   If the version of your Cisco Expressway Series and Cisco TelePresence VCS Release is 14.0 or lower, visit this page to download the latest software. 

3. If you haven't already done so, bookmark this website and register your details to receive email alerts.

 

 

Cookies
Terms of use
Codes of practice
Privacy policy
Accessibility