Lucene search
CiscoCVE-2015-4274HistoryJul 16, 2015 - 7:59 p.m.
CVE-2015-4274
2015-07-1619:59:01
CWE-352
cisco
web.nvd.nist.gov
28
cve-2015-4274
csrf vulnerability
cisco unified intelligence center
remote attack
user authentication
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.001
Percentile
39.6%
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified Intelligence Center 10.0(1) and 10.6(1) allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCuu94862 and CSCuu97936.
Affected configurations
Node
ciscounified_intelligence_centerMatch10.0\(1\)
ORciscounified_intelligence_centerMatch10.6\(1\)
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_intelligence_center | 10.0(1) | cpe:2.3:o:cisco:unified_intelligence_center:10.0\(1\):*:*:*:*:*:*:* |
| cisco | unified_intelligence_center | 10.6(1) | cpe:2.3:o:cisco:unified_intelligence_center:10.6\(1\):*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2015-07-16 19:59:00
cvelist
cvelist
CVE-2015-4274
2015-07-16 19:00:00
nvd
nvd
CVE-2015-4274
2015-07-16 19:59:01
cisco
cisco
Cisco Unified Intelligence Center Cross-Site Request Forgery Vulnerability
2015-07-15 21:18:47
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.001
Percentile
39.6%
Related for CVE-2015-4274