CVE-2015-4306

2015-09-20T01:59:00
ID CVE-2015-4306
Type cve
Reporter cve@mitre.org
Modified 2017-01-04T17:57:00

Description

The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended login-session read restrictions, and impersonate administrators of arbitrary tenant domains, by discovering a session identifier and constructing a crafted URL, aka Bug IDs CSCus88343 and CSCus88334.