Cisco Prime Collaboration Assurance — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Prime Collaboration Assurance, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (20)
CVE-2018-0321 — CVSS 9.8 (critical): A vulnerability in Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to access the Java Remote…
CVE-2015-6389 — CVSS 9.0 (critical): Cisco Prime Collaboration Assurance before 11.0 has a hardcoded cmuser account, which allows remote attackers to obtain access by…
CVE-2015-4304 — CVSS 9.0 (critical): The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access…
CVE-2017-6659 — CVSS 8.8 (high): A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote…
CVE-2015-4306 — CVSS 8.5 (high): The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended…
CVE-2018-0141 — CVSS 8.4 (high): A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an unauthenticated, local attacker to log in to…
CVE-2019-1662 — CVSS 8.2 (high): A vulnerability in the Quality of Voice Reporting (QOVR) service of Cisco Prime Collaboration Assurance (PCA) Software could allow an…
CVE-2017-6779 — CVSS 7.5 (high): Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration…
CVE-2016-1392 — CVSS 7.4 (high): Open redirect vulnerability in Cisco Prime Collaboration Assurance Software 10.5 through 11.0 allows remote attackers to redirect users to…
CVE-2015-6328 — CVSS 6.8 (medium): The web framework in Cisco Prime Collaboration Assurance (PCA) 10.5(1) allows remote authenticated users to bypass intended access…
CVE-2015-6330 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in Cisco Prime Collaboration Assurance 10.5(1) and 10.6 allows remote attackers to hijack…
CVE-2018-15438 — CVSS 6.5 (medium): A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote…
CVE-2015-6331 — CVSS 6.5 (medium): SQL injection vulnerability in the web framework in Cisco Prime Collaboration Assurance 10.5(1) allows remote authenticated users to…
CVE-2019-1856 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance (PCA) could allow an unauthenticated, remote…
CVE-2016-9200 — CVSS 6.1 (medium): A vulnerability in the web framework code of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote attacker to conduct…
CVE-2017-3845 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote…
CVE-2018-0458 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote…
CVE-2017-3844 — CVSS 4.3 (medium): A vulnerability in exporting functions of the user interface for Cisco Prime Collaboration Assurance could allow an authenticated, remote…
CVE-2017-3843 — CVSS 4.3 (medium): A vulnerability in the file download functions for Cisco Prime Collaboration Assurance could allow an authenticated, remote attacker to…
CVE-2015-4305 — CVSS 4.0 (medium): The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended…