CVE-2019-15278

Name of the Vulnerable Software and Affected Versions Cisco Finesse (affected versions not specified)

Description The issue exists due to the software's failure to protect its web page structure and sanitize URLs before handling requests. This could allow a remote attacker to bypass authorization and access sensitive device information by submitting a crafted URL. A successful exploit may result in unauthorized access to sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.