CVE-2022-20793

Name of the Vulnerable Software and Affected Versions Cisco TelePresence CE Software and RoomOS Software for Cisco Touch 10 Devices (affected versions not specified)

Description A vulnerability in the pairing process could allow an unauthenticated, remote attacker to impersonate a legitimate device and pair with an affected device due to insufficient identity verification. An attacker could exploit this by responding to the pairing broadcast from an affected device, potentially allowing access to the device while impersonating a legitimate one.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.