Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the password reset function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a password reset request. An attacker could exploit this vulnerability by submitting a password reset request and changing the password for any user on an affected system. An exploit could allow the attacker to gain administrative-level privileges on the affected system. This vulnerability affects Cisco Prime Collaboration Provisioning (PCP) Releases 11.6 and prior. Cisco Bug IDs: CSCvd07245.
CVSS Information
N/A
Vulnerability Type
凭证管理
Vulnerability Title
Cisco Prime Collaboration Provisioning 信任管理漏洞
Vulnerability Description
Cisco Prime Collaboration Provisioning(PCP)是美国思科(Cisco)公司的一套基于Web的下一代通信服务软件。该软件对IP电话、语音邮件和统一通信环境提供IP通信服务功能。 Cisco PCP 11.6及之前版本中的密码重置功能存在信任管理漏洞,该漏洞源于程序没有充分的验证密码重置请求。远程攻击者可通过提交密码重置请求并更改任意用户密码利用该漏洞在受影响系统上获取管理权限。
CVSS Information
N/A
Vulnerability Type
N/A