CVE-2022-20931
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Nov 15, 2024
CWE ID 527
Summary
CVE-2022-20931 is a vulnerability affecting the version control of Cisco TelePresence CE Software for Cisco Touch 10 Devices. This issue allows unauthenticated, adjacent attackers to install older software versions on vulnerable devices. The root cause is insufficient version control. Exploitation could permit attackers to leverage vulnerabilities present in older software editions. Cisco has released patches to address this vulnerability, and currently, no workarounds are available.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share