CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-4298

Cisco Unified Web and E-Mail Interaction Manager 9.0(2) and 11.0(1) improperly performs authorization, which allows remote authenticated users to read or write to stored data via unspecified vectors, aka Bug ID CSCuo89056.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.9%

CVSS Severity

CVSS v2 Score 6.5

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=40428
http://www.securityfocus.com/bid/76348
http://www.securitytracker.com/id/1033286
http://tools.cisco.com/security/center/viewAlert.x?alertId=40428
http://www.securityfocus.com/bid/76348
http://www.securitytracker.com/id/1033286

Products affected by CVE-2015-4298

Cisco » Unified Web And E-Mail Interaction Manager » Version: 11.0(1)

cpe:2.3:a:cisco:unified_web_and_e-mail_interaction_manager:11.0(1)
Cisco » Unified Web And E-Mail Interaction Manager » Version: 9.0(2)

cpe:2.3:a:cisco:unified_web_and_e-mail_interaction_manager:9.0(2)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4298

Products

Pricing

Contact Us