Authorization Bypass in Cisco Unified Web and Email Interaction Manager
CVE-2015-4298

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Web And E-mail Interaction Manager
Vendor: CVE Published:; 19 August 2015

Summary

The Cisco Unified Web and Email Interaction Manager is susceptible to an authorization bypass vulnerability that permits remote authenticated users to read or write to stored data. This issue arises from improper authorization checks, allowing users to potentially manipulate sensitive data without appropriate permissions. The impact of this vulnerability can lead to unauthorized access to confidential information within the system.

References

http://www.securitytracker.com/id/1033286

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/76348

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Aug 19, 2015
Vulnerability Reserved
Jun 4, 2015