CVE-2015-6404

Currently unrated

Key Information:

Vendor
Cisco
Status
Hosted Collaboration Solution
Vendor
CVE Published:
15 December 2015

Summary

Cisco Hosted Collaboration Mediation Fulfillment 10.6(3) does not use RBAC, which allows remote authenticated users to obtain sensitive credential information by leveraging admin access and making SOAP API requests, aka Bug ID CSCuw84374.

References

http://www.securityfocus.com/bid/78874
vdb-entryx_refsource_BID
http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.