PT-2016-6936 · Cisco · Cisco Unified Communications Manager Im/Presence Service

Publicado

2016-12-14

Atualizado

2017-01-05

CVE-2016-6464

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager IM and Presence Service version 11.5(1)

Description A vulnerability in the web management interface could allow an unauthenticated, remote attacker to view information on web pages that should be restricted.

Recommendations For version 11.5(1), update to version 11.5(1.12000.2) or later to resolve the issue.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2016-6464

Produtos afetados

Cisco Unified Communications Manager Im/Presence Service

PT-2016-6936 · Cisco · Cisco Unified Communications Manager Im/Presence Service

CVE-2016-6464

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5