Описание
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuq94980.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:cisco:telepresence_tc_software:6.0.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.0.0-cucm:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.0.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.0.1-cucm:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.0.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.0_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.1.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.1.0-cucm:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.1.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.1.1-cucm:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.1.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.1.2-cucm:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.1_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:6.3_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:telepresence_tc_software:7.2_base:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00206
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-601
Связанные уязвимости
github
больше 3 лет назад
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuq94980.
EPSS
Процентиль: 43%
0.00206
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-601