CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Vsecurity 1Tandberg Video Communication Server Apr 29, 2026 Apr 13, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 Unspecified vulnerability on the TANDBERG Video Communication Server (VCS) before X5.0 allows remote attackers to execute arbitrary code via unknown vectors, aka Reference ID 69773. |
1Vsecurity 1Tandberg Video Communication Server Apr 29, 2026 Apr 13, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability on the TANDBERG Video Communication Server (VCS) before X5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Reference ID 66316. |
1Vsecurity 1Tandberg Video Communication Server Apr 29, 2026 Apr 13, 2010 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Multiple directory traversal vulnerabilities in the web administration interface on the TANDBERG Video Communication Server (VCS) before X5.1 allow remote authenticated users to read arbitrary files via a .. (dot dot) in...Show more |
1Vsecurity 1Tandberg Video Communication Server Apr 29, 2026 Apr 13, 2010 N/A· v4 N/A· v3 8.5 HIGH· v2 The SSH service on the TANDBERG Video Communication Server (VCS) before X5.1 uses a fixed DSA key, which makes it easier for remote attackers to conduct man-in-the-middle attacks and spoof arbitrary servers via crafted S...Show more |
1Vsecurity 1Tandberg Video Communication Server Apr 29, 2026 Apr 13, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 The administrative web console on the TANDBERG Video Communication Server (VCS) before X4.3 uses predictable session cookies in (1) tandberg/web/lib/secure.php and (2) tandberg/web/user/lib/secure.php, which makes it eas...Show more |