Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in the SOAP API endpoints of the web-services directory in Cisco Unified MeetingPlace 8.6(1.9) allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts, aka Bug ID CSCus97494.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Unified MeetingPlace web-services 跨站请求伪造漏洞
Vulnerability Description
Cisco Unified MeetingPlace是美国思科(Cisco)公司的一套多媒体会议解决方案。该方案提供了将语音、视频和Web会议集成在一起的用户环境。 Cisco Unified MeetingPlace 8.6(1.9)版本中的web-services目录下的SOAP API端点存在跨站请求伪造漏洞。远程攻击者可利用该漏洞创建管理员账户。
CVSS Information
N/A
Vulnerability Type
N/A