Design/Logic Flaw

2013-09-2018:55:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

55.9%

JSON

The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before 9.1.1 does not properly determine the existence of an authenticated session, which allows remote attackers to discover usernames and passwords via an HTTP request, aka Bug ID CSCud32600.

CPENameOperatorVersion
prime_central_for_hosted_collaboration_solution_assuranceeq1.0.1
prime_central_for_hosted_collaboration_solution_assuranceeq8.6
prime_central_for_hosted_collaboration_solution_assuranceeq9.0
prime_central_for_hosted_collaboration_solution_assurancele9.1
prime_central_for_hosted_collaboration_solution_assuranceeq1.0

Name	Operator	Version
prime_central_for_hosted_collaboration_solution_assurance	eq	1.0.1
prime_central_for_hosted_collaboration_solution_assurance	eq	8.6
prime_central_for_hosted_collaboration_solution_assurance	eq	9.0
prime_central_for_hosted_collaboration_solution_assurance	le	9.1
prime_central_for_hosted_collaboration_solution_assurance	eq	1.0