The two security weaknesses, tracked as CVE-2022-20754 and CVE-2022-20755 and with a CVSS score of 9.0, can be exploited by a remote, authorised attacker to edit files or execute the code on the linux kernel with root access.
Cisco issued updates this week to address two major vulnerabilities in its Expressway Series and TelePresence Video Communication Server (VCS) unified communications devices.