Web-based Management Interface Vulnerability in Cisco Finesse
CVE-2018-0399
9.8CRITICAL
Summary
The web-based management interface of Cisco Finesse contains vulnerabilities that could be exploited by an unauthenticated remote attacker. These vulnerabilities enable the attacker to retrieve sensitive information, such as cleartext passwords, from the system. This poses a significant risk to the security of the affected product as it may allow unauthorized access to sensitive configurations and user data.
Affected Version(s)
Cisco Finesse unknown Cisco Finesse unknown
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved