QwikSec

Security Database

CVE

CWE

Training

CVE-2016-6468

Published: Dec 14, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. More Information: CSCvb06663. Known Affected Releases: 11.5(1.10000.4). Known Fixed Releases: 12.0(0.98000.14).

Vendor	Product	Versions
n/a	Cisco Emergency Responder	affected `Cisco Emergency Responder`

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-cer

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.