Cisco Hosted Collaboration Mediation Fulfillment 10.6(3) does not use RBAC, which allows remote authenticated users to obtain sensitive credential information by leveraging admin access and making SOAP API requests, aka Bug ID CSCuw84374.
AV:N/AC:L/Au:S/C:P/I:N/A:NCisco Hosted Collaboration Solution
APPCisco10.6\(3\)_base
Related vulnerabilities
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating Sy...
The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHand...
A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified ...
A vulnerability in the CLI of Cisco Unified Communications Domain Manager (Cisco Unified CDM) Software could a...
A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote...