Published: 13/12/2015 Updated: 07/12/2016

CVSS v2 Base Score: 9 | Impact Score: 8.5 | Exploitability Score: 10

VMScore: 801

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:C

Subscribe to Prime Collaboration Assurance

Cisco Prime Collaboration Assurance prior to 11.0 has a hardcoded cmuser account, which allows remote malicious users to obtain access by establishing an SSH session and leveraging knowledge of this account's password, aka Bug ID CSCus62707.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco prime collaboration assurance 10.6.0
cisco prime collaboration assurance 10.5.1

A vulnerability in Cisco Prime Collaboration Assurance (PCA) Software could allow an unauthenticated, remote attacker to log in to the system shell with the default cmuser user account and access the shell with a limited set of permissions The vulnerability is due to an undocumented account that has a default and static password This account is ...

Threat intelligence report for the telecommunications industry

Securelist • Kaspersky Lab • 22 Aug 2016

Download PDF The telecommunications industry keeps the world connected. Telecoms providers build, operate and manage the complex network infrastructures used for voice and data transmission – and they communicate and store vast amounts of sensitive data. This makes them a top target for cyber-attack. According to PwC’s Global State of Information Security, 2016, IT security incidents in the telecoms sector increased 45% in 2015 compared to the year before. Telecoms providers need to arm them...

CVE-2015-6389

Vulnerability Summary

Vendor Advisories

Recent Articles

References

Vulmon Search

About

Products

Connect