CVE-2016-6370

Directory traversal vulnerability in the web interface in Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) 10.6(3) and earlier allows remote authenticated users to read arbitrary files via a crafted pathname in an HTTP request, aka Bug ID CSCuz27255.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6\(2\)_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6\(1\)_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6\(3\)_base:*:*:*:*:*:*:*

Information

Published : 2016-09-12 03:59

Updated : 2016-12-12 11:04


NVD link : CVE-2016-6370

Mitre link : CVE-2016-6370


JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa

Products Affected

cisco

  • hosted_collaboration_mediation_fulfillment