The web framework in Cisco Prime Collaboration Assurance prior to 10.5.1.53684-1 allows remote authenticated users to bypass intended system-database read restrictions, and discover credentials or SNMP communities for arbitrary tenant domains, via a crafted URL, aka Bug ID CSCus62656.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco prime collaboration assurance 9.0.0 |
||
cisco prime collaboration assurance 9.5.0 |
||
cisco prime collaboration assurance 10.0.0 |
||
cisco prime collaboration assurance 10.5.0 |
||
cisco prime collaboration assurance 10.5.1 |
||
cisco prime collaboration assurance 10.6.0 |