PT-2013-5578 · Cisco · Cisco Unified Meetingplace Solution
Publicado
2013-09-16
·
Atualizado
2013-10-18
·
CVE-2013-5494
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Cisco Unified MeetingPlace Solution (affected versions not specified)
Description
A cross-site request forgery (CSRF) issue in the web framework of Cisco Unified MeetingPlace Solution allows remote attackers to hijack the authentication of arbitrary users. This can be exploited in products such as Unified MeetingPlace Web Conferencing and Unified MeetingPlace.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Unified Meetingplace Solution