==================================================================== CERT-Renater Note d'Information No. 2019/VULN356 _____________________________________________________________________ DATE : 07/11/2019 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running Cisco TelePresence Collaboration Endpoint Software versions prior to 9.8.1, RoomOS Software versions prior to July Drop 1 2019, TelePresence Codec Software versions prior to 7.3.19. ===================================================================== https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191106-telepres-roomos-dos https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191106-telepres-roomos-privesc _____________________________________________________________________ Cisco TelePresence Collaboration Endpoint and RoomOS Software Denial of Service Vulnerabilities CVE-2019-15289 SIR: High CVSS Score v(3.0): 7.5 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191106-telepres-roomos-dos ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191106-telepres-roomos-dos"] _____________________________________________________________________ Cisco TelePresence Collaboration Endpoint, TelePresence Codec, and RoomOS Software Privilege Escalation Vulnerability CVE-2019-15288 SIR: High CVSS Score v(3.0): 8.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191106-telepres-roomos-privesc ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191106-telepres-roomos-privesc"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================