CVE-2015-0716: CSRF
First published: Thu May 07 2015(Updated: )
Cross-site request forgery (CSRF) vulnerability in the CUCReports page in Cisco Unity Connection 11.0(0.98000.225) and 11.0(0.98000.332) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut33659.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unity Connection | =11.0\(0.98000.225\) | |
| Cisco Unity Connection | =11.0\(0.98000.332\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/description
- agent/event
- vendor/cisco
- canonical/cisco unity connection
- version/cisco unity connection/11.0\(0.98000.225\)
- version/cisco unity connection/11.0\(0.98000.332\)