Cross-Site Request Forgery (CSRF) Vulnerability in Cisco Emergency Responder Web Interface

CVE-2016-6468 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. More Information: CSCvb06663. Known Affected Releases: 11.5(1.10000.4). Known Fixed Releases: 12.0(0.98000.14).

Learn more about our Cis Benchmark Audit For Cisco.