← Voltar para CVEs
CVE-2016-6468
N/ADescricao
A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. More Information: CSCvb06663. Known Affected Releases: 11.5(1.10000.4). Known Fixed Releases: 12.0(0.98000.14).
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado12/14/2016
Ultima modificacao5/6/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
cisco:emergency_responder
Fraquezas (CWE)
CWE-352
Referencias
http://www.securityfocus.com/bid/94786(psirt@cisco.com)
http://www.securitytracker.com/id/1037428(psirt@cisco.com)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-cer(psirt@cisco.com)
http://www.securityfocus.com/bid/94786(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1037428(af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-cer(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.