Vulnerabilities > Cisco > Prime Collaboration Assurance > 10.6.0

DATE CVE VULNERABILITY TITLE RISK
2019-02-21 CVE-2019-1662 Improper Authentication vulnerability in Cisco Prime Collaboration Assurance
A vulnerability in the Quality of Voice Reporting (QOVR) service of Cisco Prime Collaboration Assurance (PCA) Software could allow an unauthenticated, remote attacker to access the system as a valid user.
network
low complexity
cisco CWE-287
critical
 9.1
9.1
2018-06-07 CVE-2018-0321 Improper Authentication vulnerability in Cisco products
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to access the Java Remote Method Invocation (RMI) system.
network
low complexity
cisco CWE-287
critical
 9.8
9.8
2016-12-14 CVE-2016-9200 Cross-site Scripting vulnerability in Cisco Prime Collaboration Assurance 10.5.1/10.6.0
A vulnerability in the web framework code of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface.
network
low complexity
cisco CWE-79
6.1
6.1
2016-05-05 CVE-2016-1392 Unspecified vulnerability in Cisco Prime Collaboration Assurance
Open redirect vulnerability in Cisco Prime Collaboration Assurance Software 10.5 through 11.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuu34121.
network
low complexity
cisco
7.4
7.4