CVE-2016-6370

2016-09-12T10:59:00
ID CVE-2016-6370
Type cve
Reporter cve@mitre.org
Modified 2016-12-12T19:04:00

Description

Directory traversal vulnerability in the web interface in Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) 10.6(3) and earlier allows remote authenticated users to read arbitrary files via a crafted pathname in an HTTP request, aka Bug ID CSCuz27255.