CVE-2015-0741
Summary
| CVE | CVE-2015-0741 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2015-05-21 10:59:00 UTC |
| Updated | 2017-01-06 17:03:00 UTC |
| Description | Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco Prime Central for Hosted Collaboration Solution (PC4HCS) 10.6(1) and earlier allow remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut04596. |
Risk And Classification
Problem Types: CWE-352
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Cisco | Hosted Collaboration Solution | All | All | All | All |
| Application | Cisco | Hosted Collaboration Solution | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco Prime Central for Hosted Collaboration Solution Lets Remote Users Conduct Cross-Site Request Forgery Attacks - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| Cisco Prime Central for HCS CVE-2015-0741 Multiple Cross Site Request Forgery Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| 20150520 Cisco Prime Central for HCS Multiple Cross-Site Request Forgery Vulnerabilities | CISCO | tools.cisco.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.