Guest

Preview Tool

Cisco Bug: CSCun45572 - CUCDM BVSMWeb User Enumeration Vulnerability

Last Modified

Aug 06, 2018

Products (1)

  • Cisco Hosted Collaboration Solution (HCS)

Known Affected Releases

8.1(2)

Description (partial)

Symptom:
CUCDM contains a vulnerability in the authentication and authorization frameword of BVSMweb application which could allow the enumeration of
valid account.

This issue was reported to Cisco by Fatih Ozavci from Sense of Security

Conditions:
none
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.