Unauthorized Access Vulnerability in Cisco Videoscape Distribution Suite Service Manager
CVE-2015-6417

Currently unrated

Key Information:

Vendor: Cisco
Status: Videoscape Distribution Suite Service Manager
Vendor: CVE Published:; 12 December 2015

What is CVE-2015-6417?

The Cisco Videoscape Distribution Suite Service Manager is susceptible to unauthorized database access due to insufficient implementation of Role-Based Access Control (RBAC). This flaw allows remote authenticated users to potentially read or alter database entries through both the graphical user interface and specially crafted HTTP requests. This vulnerability can lead to significant security risks as it enables unauthorized manipulation of sensitive data, which could compromise the integrity of the service.

References

http://www.securityfocus.com/bid/78871

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 12, 2015
Vulnerability Reserved
Aug 17, 2015