Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability

A vulnerability exists in the logging component of Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS Software. It allows an authenticated, remote attacker to view sensitive information in clear text on an affected system. This issue arises because unencrypted credentials are stored when SIP media component logging is enabled. An attacker with valid administrative credentials could access the audit logs, retrieve these credentials, and use them to access confidential information, potentially including personally identifiable information (PII).

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information, including PII, by allowing an attacker to retrieve unencrypted credentials from the audit logs.

Remediation

Cisco has released software updates to address this vulnerability. For devices running Cisco TelePresence CE or RoomOS, it is recommended to upgrade to the fixed releases mentioned in the advisory. Instructions for obtaining the updated software can be found on the Cisco Support and Downloads page.