Back to search
CVE-2015-4306
Published: Sep 20, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended login-session read restrictions, and impersonate administrators of arbitrary tenant domains, by discovering a session identifier and constructing a crafted URL, aka Bug IDs CSCus88343 and CSCus88334.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20150916 Multiple Vulnerabilities in Cisco Prime Collaboration Assurance
vendor-advisory
x_refsource_CISCO
1033581
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now