Vulnerability Details CVE-2015-6389
Cisco Prime Collaboration Assurance before 11.0 has a hardcoded cmuser account, which allows remote attackers to obtain access by establishing an SSH session and leveraging knowledge of this account's password, aka Bug ID CSCus62707.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 73.9%
CVSS Severity
CVSS v2 Score 9.0
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-pca
- http://www.securityfocus.com/bid/78738
- http://www.securitytracker.com/id/1034361
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-pca
- http://www.securityfocus.com/bid/78738
- http://www.securitytracker.com/id/1034361
Products affected by CVE-2015-6389
-
cpe:2.3:a:cisco:prime_collaboration_assurance:10.5.1
-
cpe:2.3:a:cisco:prime_collaboration_assurance:10.6.0