Cisco Telepresence Ce Software vulnerabilities

CVE-2020-3336 [HIGH] CWE-78 CVE-2020-3336: A vulnerability in the software upgrade process of Cisco TelePresence Collaboration Endpoint Softwar A vulnerability in the software upgrade process of Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software could allow an authenticated, remote attacker to modify the filesystem to cause a denial of service (DoS) or gain privileged access to the root filesystem. The vulnerability is due to insufficient input validation. An attacker w

CVE-2019-12622 [MEDIUM] CWE-275 CVE-2019-12622: A vulnerability in Cisco RoomOS Software could allow an authenticated, local attacker to write files A vulnerability in Cisco RoomOS Software could allow an authenticated, local attacker to write files to the underlying filesystem with root privileges. The vulnerability is due to insufficient permission restrictions on a specific process. An attacker could exploit this vulnerability by logging in to an affected device with remote support credential