ByteOS Network

NVD Vulnerability Details :

CVE-2015-6414

Deferred

Source-psirt@cisco.com

Published At-13 Dec, 2015 | 03:59

Updated At-12 Apr, 2025 | 10:46

Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same encryption key across different customers' installations, which makes it easier for local users to defeat cryptographic protection mechanisms by leveraging knowledge of a key from another installation, aka Bug ID CSCuw64516.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N

Type: Primary

Version: 2.0

Base score: 2.1

Base severity: LOW

Vector:

AV:L/AC:L/Au:N/C:P/I:N/A:N

CPE Matches

Cisco Systems, Inc.

>>telepresence_video_communication_server_software>>x8.6

cpe:2.3:a:cisco:telepresence_video_communication_server_software:x8.6:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-200	Primary	nvd@nist.gov

CWE ID: CWE-200

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-tvcs	psirt@cisco.com	Vendor Advisory
http://www.securityfocus.com/bid/79065	psirt@cisco.com	N/A
http://www.securitytracker.com/id/1034429	psirt@cisco.com	N/A
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-tvcs	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://www.securityfocus.com/bid/79065	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id/1034429	af854a3a-2127-422b-91ae-364da2661108	N/A