CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-4256

Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence IP VCR devices with software 3.0(1.27) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu90736.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.7%

CVSS Severity

CVSS v2 Score 6.8

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=39800
http://www.securitytracker.com/id/1032838
http://tools.cisco.com/security/center/viewAlert.x?alertId=39800
http://www.securitytracker.com/id/1032838

Products affected by CVE-2015-4256

Cisco » Telepresence Ip Vcr 3.0 » Version: 1.27

cpe:2.3:a:cisco:telepresence_ip_vcr_3.0:1.27

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4256

Products

Pricing

Contact Us