Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco Hosted Collaboration Mediation Fulfillment 10.6(3) does not use RBAC, which allows remote authenticated users to obtain sensitive credential information by leveraging admin access and making SOAP API requests, aka Bug ID CSCuw84374.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Hosted Collaboration Mediation Fulfillment 信息泄露漏洞
Vulnerability Description
Cisco Hosted Collaboration Mediation Fulfillment(HCM-F)是美国思科(Cisco)公司的一套对思科HCS解决方案进行集中管理的软件。该软件提供配置、管理和监控思科HCM-F的服务等功能。 Cisco HCM-F 10.6(3)版本中存在安全漏洞,该漏洞源于程序没有使用RBAC权限管理。远程攻击者可借助admin访问权限和SOAP API请求利用该漏洞获取敏感的证书信息。
CVSS Information
N/A
Vulnerability Type
N/A