CVE-2015-6276

Currently unrated

Key Information:

Vendor: Cisco
Status: Telepresence System Software Ix
Vendor: CVE Published:; 5 September 2015

Summary

Cisco TelePresence IX5000 8.0.3 stores a private key associated with an X.509 certificate under the web root with insufficient access control, which allows remote attackers to obtain cleartext versions of HTTPS traffic or spoof devices via a direct request to the certificate directory, aka Bug ID CSCuu63501.

References

http://www.securitytracker.com/id/1033477

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Sep 5, 2015
Vulnerability Reserved
Aug 17, 2015