← back
CVE-2017-3877

CVE-2017-3877

EPSS 0.8%
A vulnerability in the web framework of Cisco Unified Communications Manager (CallManager) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against a user of the web interface of the affected software. More Information: CSCvb70021. Known Affected Releases: 11.5(1.11007.2).
Affected products
n/a · Cisco Unified Communications Manager

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170315-ucm2http://www.securityfocus.com/bid/96915http://www.securitytracker.com/id/1038038