Cisco Bug: CSCuj61043 - Security Diagnostic Tool report still accessible via URL
Last Modified
Jul 24, 2017
Products (1)
- Cisco Unified Communications Manager (CallManager)
Known Affected Releases
10.0(0.98000.366)
Description (partial)
Symptom: Symptoms: The Security Diagnostic Tool report is still accessible via URLthough functionality is backed out . Conditions: Condition: 1)Login to Cisco Unified Reporting Tool. 2)Use the URL https://<ccmip>/cucreports/generateReport.do?isStandard=true&name=Security%20Diagnostic%20Tool&transform=false 3)Click on Security Diagnostic Tool link. Following message is displayed Report generated successfully. Status: Warning WARNING: Problem encountered while validating report XML with schema: cvc-complex-type.2.4.b: The content of element 'GRTReport' is not complete. One of '{title}' is expected. The functionality is backed out ..but the report can still be generated via URL although the report generated is not a valid one. Probably strutsconfig.xml needs to be updated and message like "This Page not yet implemented" or something similar message must be displayed when the user tries to access the non existing functionality through URL
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Status
- Severity
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases