CSRF in Cisco Packaged Contact Center Enterprise
CVE-2018-0444
A vulnerability in the web-based management interface of Cisco Packaged Contact Center Enterprise could allow an unauthenticated, remote attacker to conduct a stored XSS attack against a user of the interface. The vulnerability is due to i…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.001 (28.2th percentile) — read the EPSS interpretation.
Affected products
- Cisco Packaged Contact Center Enterprise — versions n/a
Weakness classification (CWE)
References
- 20180905 Multiple Vulnerabilities in Cisco Packaged Contact Center Enterprise (x_refsource_CISCO, vendor-advisory)