CVE-2015-6276

Cisco TelePresence IX5000 8.0.3 stores a private key associated with an X.509 certificate under the web root with insufficient access control, which allows remote attackers to obtain cleartext versions of HTTPS traffic or spoof devices via a direct request to the certificate directory, aka Bug ID CSCuu63501.

Severity	MEDIUM
CVSS	5.0
CWE	CWE-200
KEV
Published	10 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Cisco Unified Communications Manager	Cisco-SA-20150903-CVE-2015-6276	Cisco OpenVuln
Cisco TelePresence IX5000	Cisco-SA-20150903-CVE-2015-6276	Cisco OpenVuln
Cisco TelePresence	Cisco-SA-20150903-CVE-2015-6276	Cisco OpenVuln