N/A

A vulnerability in Cisco Hybrid Meeting Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against the user of the web interface. More Information: CSCvc28662. Known Affected Releases: 1.0.

N/A

N/A

Cisco Hybrid Meeting Server 跨站请求伪造漏洞

Cisco Hybrid Meeting Server是美国思科（Cisco）公司的一套包含音频、视频的会议服务器软件。 Cisco Hybrid Meeting Server中存在跨站请求伪造漏洞，该漏洞源于程序没有充分地执行CSRF保护。远程攻击者可通过诱使用户打开恶意链接或访问恶意的网站利用该漏洞向受影响的设备上提交任意请求。

N/A

N/A