Lucene search
CiscoCISCO-SA-20180718-FINESSEHistoryJul 18, 2018 - 4:00 p.m.
Multiple Vulnerabilities in Cisco Finesse
2018-07-1816:00:00
tools.cisco.com
35
0.003 Low
EPSS
Percentile
69.5%
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack or retrieve a cleartext password from an affected system.
For more information about these vulnerabilities, see the Details [“#details”] section of this security advisory.
There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-finesse [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-finesse”]
Affected configurations
Node
ciscofinesseMatchany
ORciscofinesseMatchany
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco finesse | eq | any | |
| cisco finesse | eq | any |
Related
nessus
nessus
Cisco Finesse Server-Side Request Forgery (cisco-sa-20180718-finesse)
2019-10-21 00:00:00
Cisco Finesse Information Disclosure (cisco-sa-20180718-finesse)
2019-10-21 00:00:00
nvd
nvd
CVE-2018-0398
2018-07-18 23:29:01
CVE-2018-0399
2018-07-18 23:29:01
prion
prion
Design/Logic Flaw
2018-07-18 23:29:00
Server side request forgery (ssrf)
2018-07-18 23:29:00
cvelist
cvelist
CVE-2018-0399
2018-07-18 23:00:00
CVE-2018-0398
2018-07-18 23:00:00
cve
cve
CVE-2018-0399
2018-07-18 23:29:01
CVE-2018-0398
2018-07-18 23:29:01