Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended login-session read restrictions, and impersonate administrators of arbitrary tenant domains, by discovering a session identifier and constructing a crafted URL, aka Bug IDs CSCus88343 and CSCus88334.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Prime Collaboration Assurance 权限许可和访问控制漏洞
Vulnerability Description
Cisco Prime Collaboration Assurance(PCA)是美国思科(Cisco)公司的一套企业协作网络管理解决方案。该方案支持通过统一管理控制台简化统一通信和视频协作网络的管理,以及快速部署通信站点等。 Cisco Prime Collaboration Assurance的Web框架中存在安全漏洞,该漏洞源于程序没有正确执行身份验证和访问控制。远程攻击者可通过发送特制的URL利用该漏洞获取任意登陆到系统中的用户信息。
CVSS Information
N/A
Vulnerability Type
N/A