PT-2015-6493 · Cisco · Cisco Unified Intelligence Center
Published
2015-07-16
·
Updated
2025-07-31
·
CVE-2015-4274
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Cisco Unified Intelligence Center versions 10.0(1) through 10.6(1)
Description
A cross-site request forgery (CSRF) issue in the web framework allows remote attackers to hijack the authentication of arbitrary users.
Recommendations
For versions 10.0(1) and 10.6(1), update to a version that includes the fix for Bug IDs CSCuu94862 and CSCuu97936 to resolve the issue.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Unified Intelligence Center