Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Packaged Contact Center Enterprise Cross-Site Request Forgery Vulnerability
Vulnerability Description
A vulnerability in the web-based management interface of Cisco Packaged Contact Center Enterprise could allow an unauthenticated, remote attacker to conduct a CSRF attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected device. An attacker could exploit this vulnerability by persuading a user of the interface to follow a customized link. A successful exploit could allow the attacker to perform arbitrary actions on a targeted device via a web browser and with the privileges of the user.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Cisco Packaged Contact Center Enterprise 跨站请求伪造漏洞
Vulnerability Description
Cisco Packaged Contact Center Enterprise是美国思科(Cisco)公司的全渠道客户关怀解决方案。该产品主要提供自助式交互语音应答(IVR)和多通道自动呼叫分配。 Cisco Packaged Contact Center Enterprise中的基于Web的管理界面存在跨站请求伪造漏洞。远程攻击者可通过诱使用户打开特制的链接利用该漏洞在目标设备上以用户的权限执行任意操作。
CVSS Information
N/A
Vulnerability Type
N/A