The web framework in Cisco Prime Collaboration Assurance prior to 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read data from arbitrary tenant domains, via a crafted URL, aka Bug IDs CSCus62671 and CSCus62652.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco prime collaboration assurance 9.0.0 |
||
cisco prime collaboration assurance 9.5.0 |
||
cisco prime collaboration assurance 10.5.0 |
||
cisco prime collaboration assurance 10.5.1 |
||
cisco prime collaboration assurance 10.0.0 |
||
cisco prime collaboration assurance 10.6.0 |