CVE-2015-4322
published 2015-08-19CVE-2015-4322: Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, and 9.1.0-103 improperly restricts the privileges available after LDAP authentication…
medium5.5CVSS 3.1
AVNACLAuSCPIPAN
Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, and 9.1.0-103 improperly restricts the privileges available after LDAP authentication, which allows remote authenticated users to read or write to an arbitrary user's Spam Quarantine folder by visiting a spam-notification URL, aka Bug ID CSCuv65894.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | content_security_management_appliance | — | — |
| cisco | content_security_management_appliance | — | — |
| cisco | content_security_management_appliance | — | — |