Cross-Site Request Forgery Vulnerability in Cisco Prime Collaboration Assurance
CVE-2017-6659
8.8HIGH
Key Information:
- Vendor
- Cisco
- Vendor
- CVE Published:
- 13 June 2017
Summary
A vulnerability exists in the web-based management interface of Cisco Prime Collaboration Assurance, allowing unauthenticated remote attackers to execute a cross-site request forgery (CSRF) attack. This could enable attackers to perform arbitrary actions on the affected devices, potentially leading to unauthorized access and manipulation of system configurations.
Affected Version(s)
Cisco Prime Collaboration Assurance Cisco Prime Collaboration Assurance
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved