A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. More Information: CSCvb06663. Known Affected Releases: 11.5(1.10000.4). Known Fixed Releases: 12.0(0.98000.14).
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HCisco Emergency Responder
APPCisco11.5\(1.10000.4\)
Related vulnerabilities
A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an a...
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating Sy...
A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenti...
Multiple Cisco products are affected by a vulnerability in local file management for certain system log files ...
The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unifie...