CVE-2016-6370

Directory traversal vulnerability in the web interface in Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) 10.6(3) and earlier allows remote authenticated users to read arbitrary files via a crafted pathname in an HTTP request, aka Bug ID CSCuz27255.

Severity	MEDIUM
CVSS	4.3
CWE	CWE-22
KEV
Published	9 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco Nexus Dashboard	cisco-sa-20160831-hcm
Cisco Application Centric Infrastructure Virtual Edge	cisco-sa-20160831-hcm
Cisco Hosted Collaboration Mediation Fulfillment	cisco-sa-20160831-hcm