4 matches found
Cisco Prime Collaboration Provisioning logconfigtracer.jsp Directory Traversal (CVE-2017-6621)
An information disclosure vulnerability exists in Cisco Prime Collaboration Provisioning. The vulnerability is due to insufficient validation on user supplied paths when a request is sent to logconfigtracer.jsp page. A remote, unauthenticated attacker can exploit this vulnerability by sending a...
Cisco Prime Collaboration Provisioning Information Disclosure Vulnerability (May 2017)
cisco prime collaboration provisioning is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
CVE-2017-6621
CVE-2017-6621 affects Cisco Prime Collaboration Provisioning web interface, where an unauthenticated attacker can disclose sensitive data via crafted HTTP responses due to insufficient protection of data in replies. It impacts Cisco Prime Collaboration Provisioning software releases 10.6–11.5. Co...
CVE-2017-6621
A vulnerability in the web interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The vulnerability is due to insufficient protection of...