Cisco Bug: CSCtf06847 - Arbitrary File Access on CTMS
Feb 21, 2017
- Cisco TelePresence Multipoint Switch
Known Affected Releases
Symptoms: Cisco TelePresence Multi-Point Switch devices contain an information disclosure vulnerability. This issue could allow an authenticated, remote administrator to disclose arbitrary files from the underlying operation system. Conditions: An authenticated user with Administrator privileges to the web portal on a device running an affected version of Cisco TelePresence Multli-Point Switch software could exploit this issue.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases