CVE-2022-20809

Name of the Vulnerable Software and Affected Versions Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) (affected versions not specified)

Description The issue is related to multiple vulnerabilities in the API and web-based management interfaces, which could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device. The vulnerability of the logging component of the software is associated with the disclosure of information through log files, allowing a remote attacker to disclose protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.