CVE-2015-6404: Infoleak
First published: Tue Dec 15 2015(Updated: )
Cisco Hosted Collaboration Mediation Fulfillment 10.6(3) does not use RBAC, which allows remote authenticated users to obtain sensitive credential information by leveraging admin access and making SOAP API requests, aka Bug ID CSCuw84374.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Hosted Collaboration Solution | =10.6\(3\)_base |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/type
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco hosted collaboration solution
- version/cisco hosted collaboration solution/10.6\(3\)_base