CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6454

A cross-site request forgery (CSRF) vulnerability in the web interface of the Cisco Hosted Collaboration Mediation Fulfillment application could allow an unauthenticated, remote attacker to execute unwanted actions. More Information: CSCva54241. Known Affected Releases: 11.5(1). Known Fixed Releases: 11.5(0.98000.216).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.3%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

Products affected by CVE-2016-6454

Cisco » Hosted Collaboration Mediation Fulfillment » Version: 10.6(1).0

cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6(1).0
Cisco » Hosted Collaboration Mediation Fulfillment » Version: 10.6(2).0

cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6(2).0
Cisco » Hosted Collaboration Mediation Fulfillment » Version: 10.6(3).0

cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6(3).0
Cisco » Hosted Collaboration Mediation Fulfillment » Version: 11.5(1).0

cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:11.5(1).0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6454

Products

Pricing

Contact Us