9
CVE-2015-4304
- EPSS 0.36%
- Veröffentlicht 20.09.2015 01:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle psirt@cisco.com
- CVE-Watchlists
- Unerledigt
LoginThe web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read data from arbitrary tenant domains, via a crafted URL, aka Bug IDs CSCus62671 and CSCus62652.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Prime Collaboration Assurance Version9.0.0
Cisco ≫ Prime Collaboration Assurance Version9.5.0
Cisco ≫ Prime Collaboration Assurance Version10.0.0
Cisco ≫ Prime Collaboration Assurance Version10.5.0
Cisco ≫ Prime Collaboration Assurance Version10.5.1
Cisco ≫ Prime Collaboration Assurance Version10.6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.36% | 0.577 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9 | 8 | 10 |
AV:N/AC:L/Au:S/C:C/I:C/A:C
|