exploitDog

CVE-2015-0741

Опубликовано: 21 мая 2015

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco Prime Central for Hosted Collaboration Solution (PC4HCS) 10.6(1) and earlier allow remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut04596.

Ссылки

http://tools.cisco.com/security/center/viewAlert.x?alertId=38927
Vendor Advisory
http://www.securityfocus.com/bid/74754
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032380
Third Party Advisory
VDB Entry
http://tools.cisco.com/security/center/viewAlert.x?alertId=38927
Vendor Advisory
http://www.securityfocus.com/bid/74754
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032380
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:hosted_collaboration_solution:*:*:*:*:*:*:*:*

Версия до 10.6\(1\) (включая)

EPSS

Процентиль: 31%

0.00119

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-9xw5-w2cf-cxfp

github

больше 3 лет назад

Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco Prime Central for Hosted Collaboration Solution (PC4HCS) 10.6(1) and earlier allow remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut04596.

EPSS

Процентиль: 31%

0.00119

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-352