Back to search
CVE-2016-6426
Published: Oct 5, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
The j_spring_security_switch_user function in Cisco Unified Intelligence Center (CUIC) 8.5.4 through 9.1(1), as used in Unified Contact Center Express 10.0(1) through 11.0(1), allows remote attackers to create user accounts by visiting an unspecified web page, aka Bug IDs CSCuy75027 and CSCuy81653.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20161005 Cisco Unified Intelligence Center (CUIC) Software Unauthenticated User Account Creation Vulnerability
vendor-advisory
x_refsource_CISCO
1036952
vdb-entry
x_refsource_SECTRACK
93420
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now