The j_spring_security_switch_user function in Cisco Unified Intelligence Center (CUIC) 8.5.4 up to and including 9.1(1), as used in Unified Contact Center Express 10.0(1) up to and including 11.0(1), allows remote malicious users to create user accounts by visiting an unspecified web page, aka Bug IDs CSCuy75027 and CSCuy81653.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco unified contact center express 11.0\\(1\\) |
||
cisco unified intelligence center 8.5.4 |
||
cisco unified contact center express 10.6\\(1\\) |
||
cisco unified intelligence center 9.0\\(2\\) |
||
cisco unified contact center express 10.5\\(1\\) |
||
cisco unified intelligence center 9.1\\(1\\) |
||
cisco unified contact center express 10.0\\(1\\) |