CVE-2015-0697
Summary
| CVE | CVE-2015-0697 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2015-04-15 10:59:00 UTC |
| Updated | 2017-01-06 16:32:00 UTC |
| Description | Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuq94980. |
Risk And Classification
Problem Types: CWE-601
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Cisco | Telepresence Tc Software | 6.0.0 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.0-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.1 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.1-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.2 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0_base | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.0 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.0-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.1 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.1-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.2 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.2-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1_base | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.3_base | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 7.2_base | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.0 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.0-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.1 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.1-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0.2 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.0_base | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.0 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.0-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.1 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.1-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.2 | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1.2-cucm | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.1_base | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 6.3_base | All | All | All |
| Operating System | Cisco | Telepresence Tc Software | 7.2_base | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco TelePresence Collaboration Desk and Room Endpoints HTML Redirect Vulnerability | CISCO | tools.cisco.com | Vendor Advisory |
| Cisco TelePresence Collaboration Desk and Room Endpoints Let Remote Users Redirect Target Users to Arbitrary Sites - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.