Lucene search
HistoryMay 07, 2015 - 1:59 a.m.
CVE-2015-0716
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
39.6%
Cross-site request forgery (CSRF) vulnerability in the CUCReports page in Cisco Unity Connection 11.0(0.98000.225) and 11.0(0.98000.332) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut33659.
Affected configurations
Node
ciscounity_connectionMatch11.0\(0.98000.225\)
ORciscounity_connectionMatch11.0\(0.98000.332\)
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unity_connection | 11.0(0.98000.225) | cpe:2.3:a:cisco:unity_connection:11.0\(0.98000.225\):*:*:*:*:*:*:* |
| cisco | unity_connection | 11.0(0.98000.332) | cpe:2.3:a:cisco:unity_connection:11.0\(0.98000.332\):*:*:*:*:*:*:* |
Related
cisco
cisco
prion
prion
Cross site request forgery (csrf)
2015-05-07 01:59:00
cve
cve
CVE-2015-0716
2015-05-07 01:59:04
cvelist
cvelist
CVE-2015-0716
2015-05-07 01:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
39.6%
Related for NVD:CVE-2015-0716