Cisco Bug: CSCvs77887 - OS Admin user with Privilege level (Ordinary Level-0) can delete Remote Account
Jul 20, 2020
- Cisco Unified Communications Manager (CallManager)
Known Affected Releases
Symptom: OS Admin user with Privilege level (Ordinary Level-0) can delete Remote Account Conditions: 1)Login to OS Admin/Platform via CLI 2)Create an OS Admin user using CLI set account name with Privilege level(Ordinary - Level 0) and make sure account creation is successful. 3)Post account creation ,login with configured user and change the password based on the warning message displayed. 4)Login to OS Admin UI with the user and access the page Services->Remote Support. Existing Remote Account can be deleted by User with Privilege (Ordinary -Level 0). Delete operation must not be allowed.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases