Cross-Site Request Forgery Vulnerability in Cisco Unified Customer Voice Portal

CVE-2015-0735

What is CVE-2015-0735?

A cross-site request forgery (CSRF) vulnerability exists in Cisco Unified Customer Voice Portal (CVP) version 10.5(1). This flaw enables remote attackers to exploit user authentication, potentially leading to unauthorized actions on behalf of legitimate users. The vulnerability arises from inadequate validation of user requests, allowing attackers to hijack sessions without user consent. It's essential for users of affected versions to apply the relevant security updates to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References