Vulnerabilities > Cisco > Prime Collaboration > High

DATE CVE VULNERABILITY TITLE RISK
2018-06-07 CVE-2018-0336 Missing Authorization vulnerability in Cisco Prime Collaboration 12.1
A vulnerability in the batch provisioning feature of Cisco Prime Collaboration Provisioning could allow an authenticated, remote attacker to escalate privileges to the Administrator level.
network
low complexity
cisco CWE-862
8.8
8.8
2018-06-07 CVE-2018-0335 Insufficiently Protected Credentials vulnerability in Cisco Prime Collaboration 12.2
A vulnerability in the web portal authentication process of Cisco Prime Collaboration Provisioning could allow an unauthenticated, local attacker to view sensitive data.
local
low complexity
cisco CWE-522
7.8
7.8
2018-06-07 CVE-2018-0322 Missing Authorization vulnerability in Cisco products
A vulnerability in the web management interface of Cisco Prime Collaboration Provisioning (PCP) could allow an authenticated, remote attacker to modify sensitive data that is associated with arbitrary accounts on an affected device.
network
low complexity
cisco CWE-862
8.8
8.8
2018-06-07 CVE-2018-0317 Missing Authorization vulnerability in Cisco products
A vulnerability in the web interface of Cisco Prime Collaboration Provisioning (PCP) could allow an authenticated, remote attacker to escalate their privileges.
network
low complexity
cisco CWE-862
8.8
8.8
2018-03-08 CVE-2018-0141 Use of Hard-coded Credentials vulnerability in Cisco products
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system.
local
low complexity
cisco CWE-798
8.4
8.4