CVE-2015-6408

CVE-2015-6408

EPSS 1.0%

Cross-site request forgery (CSRF) vulnerability in Cisco Unity Connection 11.5(0.98) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux24578.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-uc http://www.securityfocus.com/bid/78875 http://www.securitytracker.com/id/1034379