CVE-2015-4263

CWE-200 — Information Exposure4 documents4 sources

Severity

4.0MEDIUM

EPSS

0.2%

top 61.84%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Mobility Services Engine

Timeline

PublishedJul 10

Latest updateMay 17

Description

The Control and Provisioning functionality in Cisco Mobility Services Engine (MSE) 10.0(0.1) allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCut36851.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcisco/mobility_services_engine10.0\(0.1\)

🔴Vulnerability Details

GHSA

GHSA-33jh-9x8q-p7j7: The Control and Provisioning functionality in Cisco Mobility Services Engine (MSE) 10↗2022-05-17

▶

CVEList

CVE-2015-4263: The Control and Provisioning functionality in Cisco Mobility Services Engine (MSE) 10↗2015-07-10

▶

📋Vendor Advisories

Cisco

Cisco Mobility Services Engine Control And Provisioning Information Disclosure Vulnerability↗2015-07-10

▶