CVE-2018-0398

2018-07-1823:00:00

CWE-264

cisco

www.cve.org

AI Score

9.7

Confidence

High

EPSS

0.003

Percentile

69.5%

JSON

Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack. Cisco Bug IDs: CSCvg71018.

CNA Affected

[
  {
    "product": "Cisco Finesse unknown",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco Finesse unknown"
      }
    ]
  }
]