CVE-2018-0119
CVE-2018-0119 describes an information-disclosure flaw in Cisco Spark’s account-service authentication controls. The issue stems from the improper display of user-account tokens, which could let an authenticated remote attacker log in with a token from another account and interact with or view re...