A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. More Information: CSCvb06663. Known Affected Releases: 11.5(1.10000.4). Known Fixed Releases: 12.0(0.98000.14).
[
{
"product": "Cisco Emergency Responder",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Cisco Emergency Responder"
}
]
}
]