NVD

Id
21228  
Name
CVE-2016-6454  
Description
A cross-site request forgery (CSRF) vulnerability in the web interface of the Cisco Hosted Collaboration Mediation Fulfillment application could allow an unauthenticated, remote attacker to execute unwanted actions. More Information: CSCva54241. Known Affected Releases: 11.5(1). Known Fixed Releases: 11.5(0.98000.216).  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2016-11-03  
Modified Date
2016-11-28  
Seq
2016-6454  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
115281 21228 CVE-2016-6454 93916  View
115282 21228 CVE-2016-6454 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-hcmf  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
4963 JVNDB-2016-005736 Cisco Hosted Collaboration Mediation Fulfillment の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 Cisco Hosted Collaboration Mediation Fulfillment アプリケーションの Web インターフェースには、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2016-6454 92961 CVE-2016-6454 21228 4.3 6.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005736.html 2016-10-26 2016-11-08 View