← Back

Unified Videoconferencing System 3545 Firmware

unified_videoconferencing_system_3545_firmware

Vendor: Cisco • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2010-4305
1Cisco
14Unified Videoconferencing System 3515 Multipoint Control Unit
Unified Videoconferencing System 3515 Multipoint Control Unit FirmwareUnified Videoconferencing System 3522 Basic Rate Interface Gateway+11 more
Apr 29, 2026
Nov 22, 2010
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Cisco Unified Videoconferencing (UVC) System 3545, 5110, 5115, and 5230; Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway; Unified Videoconferencing 3522 Basic Rate Interfaces (BRI) Gateway; and Unifie...Show more
Cisco Unified Videoconferencing (UVC) System 3545, 5110, 5115, and 5230; Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway; Unified Videoconferencing 3522 Basic Rate Interfaces (BRI) Gateway; and Unified Videoconferencing 3515 Multipoint Control Unit (MCU) improperly use cookies for web-interface credentials, which allows remote attackers to obtain sensitive information by reading a (1) cleartext or (2) base64-encoded cleartext cookie, aka Bug ID CSCti54052.Show less
CVE-2010-4304
1Cisco
14Unified Videoconferencing System 3515 Multipoint Control Unit
Unified Videoconferencing System 3515 Multipoint Control Unit FirmwareUnified Videoconferencing System 3522 Basic Rate Interface Gateway+11 more
Apr 29, 2026
Nov 22, 2010
N/A· v4
N/A· v3
6.4 MEDIUM· v2
The web interface in Cisco Unified Videoconferencing (UVC) System 3545, 5110, 5115, and 5230; Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway; Unified Videoconferencing 3522 Basic Rate Interfaces (BRI...Show more
The web interface in Cisco Unified Videoconferencing (UVC) System 3545, 5110, 5115, and 5230; Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway; Unified Videoconferencing 3522 Basic Rate Interfaces (BRI) Gateway; and Unified Videoconferencing 3515 Multipoint Control Unit (MCU) uses predictable session IDs based on time values, which makes it easier for remote attackers to hijack sessions via a brute-force attack, aka Bug ID CSCti54048.Show less
CVE-2010-3037
1Cisco
14Unified Videoconferencing System 3515 Multipoint Control Unit
Unified Videoconferencing System 3515 Multipoint Control Unit FirmwareUnified Videoconferencing System 3522 Basic Rate Interface Gateway+11 more
Apr 29, 2026
Nov 22, 2010
N/A· v4
N/A· v3
8.5 HIGH· v2
goform/websXMLAdminRequestCgi.cgi in Cisco Unified Videoconferencing (UVC) System 5110 and 5115, and possibly Unified Videoconferencing System 3545 and 5230, Unified Videoconferencing 3527 Primary Rate Interface (PRI) Ga...Show more
goform/websXMLAdminRequestCgi.cgi in Cisco Unified Videoconferencing (UVC) System 5110 and 5115, and possibly Unified Videoconferencing System 3545 and 5230, Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway, Unified Videoconferencing 3522 Basic Rate Interfaces (BRI) Gateway, and Unified Videoconferencing 3515 Multipoint Control Unit (MCU), allows remote authenticated administrators to execute arbitrary commands via the username field, related to a "shell command injection vulnerability," aka Bug ID CSCti54059.Show less