CVE-2015-0706

Open redirect vulnerability in Cisco FireSIGHT System Software 5.3.1.1, 5.3.1.2, and 6.0.0 in FireSIGHT Management Center allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted HTTP header, aka Bug IDs CSCut06060, CSCut06056, and CSCus98966.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
VendorProductVersion
ciscofiresight_system_software
5.3.1.1
ciscofiresight_system_software
5.3.1.2
ciscofiresight_system_software
6.0.0
𝑥
= Vulnerable software versions
References
http://tools.cisco.com/security/center/viewAlert.x?alertId=38486
http://tools.cisco.com/security/center/viewAlert.x?alertId=38486