CVE-2015-4304 - OpenCVE

The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read data from arbitrary tenant domains, via a crafted URL, aka Bug IDs CSCus62671 and CSCus62652.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:S/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Prime Collaboration Assurance

Configuration 1 [-]

OR	cpe:2.3:a:cisco:prime_collaboration_assurance:9.0.0:::::::*
	cpe:2.3:a:cisco:prime_collaboration_assurance:9.5.0:::::::*
	cpe:2.3:a:cisco:prime_collaboration_assurance:10.0.0:::::::*
	cpe:2.3:a:cisco:prime_collaboration_assurance:10.5.0:::::::*
	cpe:2.3:a:cisco:prime_collaboration_assurance:10.5.1:::::::*
	cpe:2.3:a:cisco:prime_collaboration_assurance:10.6.0:::::::*

References

Link	Resource
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150916-pca	Vendor Advisory
http://www.securitytracker.com/id/1033581	Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: cisco

Published: 2015-09-20T01:00:00

Updated: 2016-12-20T16:57:01

Reserved: 2015-06-04T00:00:00

Link: CVE-2015-4304

JSON object: View

NVD Information

Status : Analyzed

Published: 2015-09-20T01:59:00.097

Modified: 2017-01-04T17:57:23.300

Link: CVE-2015-4304

JSON object: View

Redhat Information

No data.

CWE

CWE-264

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-09-16T00:00:00", "descriptions": [{"lang": "en", "value": "The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read data from arbitrary tenant domains, via a crafted URL, aka Bug IDs CSCus62671 and CSCus62652."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-20T16:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20150916 Multiple Vulnerabilities in Cisco Prime Collaboration Assurance", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150916-pca"}, {"name": "1033581", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1033581"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2015-4304", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read data from arbitrary tenant domains, via a crafted URL, aka Bug IDs CSCus62671 and CSCus62652."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20150916 Multiple Vulnerabilities in Cisco Prime Collaboration Assurance", "refsource": "CISCO", "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150916-pca"}, {"name": "1033581", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1033581"}]}}}}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2015-4304", "datePublished": "2015-09-20T01:00:00", "dateReserved": "2015-06-04T00:00:00", "dateUpdated": "2016-12-20T16:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:prime_collaboration_assurance:9.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "E6E4A29B-3F16-43D9-AEF7-E0133B07A8A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:prime_collaboration_assurance:9.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "868011B4-2359-4867-8DE2-CE8BC2D5451A", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:prime_collaboration_assurance:10.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "7297A13E-7D34-495C-AD8C-D5DD498E951F", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:prime_collaboration_assurance:10.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "24D5EE73-6543-4011-85C3-CDBB079043C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:prime_collaboration_assurance:10.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "A7BC51A3-C6B9-43F3-B742-4925A9DFEDDC", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:prime_collaboration_assurance:10.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "DF979F82-4761-45D7-A1A1-44F0B3C8CFD1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read data from arbitrary tenant domains, via a crafted URL, aka Bug IDs CSCus62671 and CSCus62652."}, {"lang": "es", "value": "Vulnerabilidad en el framework web en Cisco Prime Collaboration Assurance en versiones anteriores a 10.5.1.53684-1, permite a usuarios remotos autenticados eludir las restricciones destinadas al acceso y crear cuentas administrativas o leer datos de dominios arrendados arbitrarios, a trav\u00e9s de una URL manipulada, tambi\u00e9n conocida como Bug IDs CSCus62671 y CSCus62652."}], "id": "CVE-2015-4304", "lastModified": "2017-01-04T17:57:23.300", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-09-20T01:59:00.097", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150916-pca"}, {"source": "ykramarz@cisco.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1033581"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}