Web Interface Unauthorized Access in Cisco Prime Service Catalog
CVE-2015-6395

Currently unrated

Key Information:

Vendor: Cisco
Status: Prime Service Catalog
Vendor: CVE Published:; 12 December 2015

Summary

The vulnerability in Cisco Prime Service Catalog is due to improper access restriction on web pages, allowing remote attackers to gain unauthorized access to the web interface. This flaw permits potential modification of configuration settings through direct requests, risking the integrity and security of the system.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1034313

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Dec 12, 2015
Vulnerability Reserved
Aug 17, 2015