Hardcoded Account Vulnerability in Cisco Prime Collaboration Assurance
CVE-2015-6389

Currently unrated

Key Information:

Vendor: Cisco
Status: Prime Collaboration Assurance
Vendor: CVE Published:; 13 December 2015

Summary

Cisco Prime Collaboration Assurance versions prior to 11.0 are susceptible to a hardcoded account vulnerability involving the cmuser account. This security flaw allows remote attackers to gain unauthorized access through SSH by utilizing knowledge of the default cmuser password. As a result, attackers could potentially compromise the system's integrity and disrupt services. It is crucial for organizations using this product to implement necessary security measures and updates to safeguard against any unauthorized access.

References

http://www.securityfocus.com/bid/78738

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1034361

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Dec 13, 2015
Vulnerability Reserved
Aug 17, 2015