NVD

Id
21150  
Name
CVE-2016-6370  
Description
Directory traversal vulnerability in the web interface in Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) 10.6(3) and earlier allows remote authenticated users to read arbitrary files via a crafted pathname in an HTTP request, aka Bug ID CSCuz27255.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2016-09-12  
Modified Date
2016-12-12  
Seq
2016-6370  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
115114 21150 CVE-2016-6370 20160831 Cisco Hosted Collaboration Mediation Fulfillment Authenticated Directory Traversal Vulnerability  View
115115 21150 CVE-2016-6370 92704  View
115116 21150 CVE-2016-6370 1036718  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
3860 JVNDB-2016-004633 Cisco Hosted Collaboration Mediation Fulfillment の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) の Web インターフェースには、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2016-6370 92877 CVE-2016-6370 21150 4 4.3 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-004633.html 2016-08-31 2016-09-14 View