Cisco TelePresence IX5000 8.0.3 stores a private key associated with an X.509 certificate under the web root with insufficient access control, which allows remote malicious users to obtain cleartext versions of HTTPS traffic or spoof devices via a direct request to the certificate directory, aka Bug ID CSCuu63501.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco telepresence system software ix 8.0.3 |