CVE-2016-1392

EUVD-2016-2491
Open redirect vulnerability in Cisco Prime Collaboration Assurance Software 10.5 through 11.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuu34121.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.4 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
ciscoprime_collaboration_assurance
10.5.0
ciscoprime_collaboration_assurance
10.5.1
ciscoprime_collaboration_assurance
10.6.0
ciscoprime_collaboration_assurance
11.0.0
𝑥
= Vulnerable software versions
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160503-pca
http://www.securitytracker.com/id/1035736
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160503-pca
http://www.securitytracker.com/id/1035736