PT-2016-6927 · Cisco · Cisco Hosted Collaboration Mediation Fulfillment
Published
2016-11-03
·
Updated
2016-11-28
·
CVE-2016-6454
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco Hosted Collaboration Mediation Fulfillment version 11.5(1)
Description
A cross-site request forgery (CSRF) issue in the web interface could allow an unauthenticated, remote attacker to execute unwanted actions.
Recommendations
For version 11.5(1), update to version 11.5(0.98000.216) to resolve the issue.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Hosted Collaboration Mediation Fulfillment