Vulnerabilities > CVE-2015-4190 - Man in the Middle Security Bypass vulnerability in Cisco Prime Service Catalog 9.4.1Vortex

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

cisco

NVD

Published: 2015-06-17

Updated: 2016-12-07

Summary

Cisco Cloud Portal in Cisco Prime Service Catalog 9.4.1_vortex on Cloud Portal appliances allows man-in-the-middle attackers to modify data via unspecified vectors, aka Bug ID CSCuh19683. <a href="https://cwe.mitre.org/data/definitions/701.html">Weaknesses Introduced During Design</a>

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Prime Service Catalog 9.4.1_Vortex	1

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=39380
http://www.securityfocus.com/bid/75271
http://www.securitytracker.com/id/1032593
http://www.securitytracker.com/id/1032594