2 matches found
Cisco Prime Collaboration Provisioning Web Framework Access Controls Bypass Vulnerability (cisco-sa-20150916-pcp)
According to its self-reported version number, the Cisco Prime Collaboration Provisioning device is a version prior to 11.0.0.650. It is, therefore, affected by a security bypass vulnerability in the web framework due to improper implementation of authorization and access controls. An...
CVE-2015-4307
CVE-2015-4307 affects Cisco Prime Collaboration Provisioning Web Framework prior to 11.0. An authenticated, remote attacker can bypass access controls via a crafted URL and create administrative accounts (Bug CSCut64111). The issue enables access to higher-privileged functions that should be rest...