A vulnerability in the web portal of the Cisco Prime Collaboration Provisioning Tool could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition for individual users. The vulnerability is due to weak login controls. An attacker could exploit this vulnerability by using a brute-force attack (Repeated Bad Login Attempts). A successful exploit could allow the attacker to restrict user access. Manual administrative intervention is required to restore access. Cisco Bug IDs: CSCvd07264.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/103150 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1040410 | Third Party Advisory VDB Entry |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180221-pcpt | Vendor Advisory |
Configurations
History
No history.
Information
Published : 2018-02-22 00:29
Updated : 2024-02-28 16:25
NVD link : CVE-2018-0204
Mitre link : CVE-2018-0204
CVE.ORG link : CVE-2018-0204
JSON object : View
Products Affected
cisco
- prime_collaboration_provisioning