Vulnerability in Cisco Hosted_collaboration_solution

CVE-2015-0750

The administrative web interface in Cisco Hosted Collaboration Solution (HCS) 10.6(1) and earlier allows remote authenticated users to execute arbitrary commands via crafted input to unspecified fields, aka Bug ID CSCut02786.

EPSS: 0.005 (67.4th percentile) — read the EPSS interpretation.

Affected products

Cisco Hosted_collaboration_solution — versions 8.0\(2\)_base, 8.6\(1\)_base, 8.6\(2\)_base
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

20150522 Cisco HCS Administrative Web Interface Arbitrary Command Execution Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)