CVE-2017-6785MEDIUMCVSS 4.3v10.5(2.10000.5)ยทv11.0(1.10000.10)+1 more2017-08-17
CVE-2017-6785 [MEDIUM] CWE-20 CVE-2017-6785: A vulnerability in configuration modification permissions validation for Cisco Unified Communication
A vulnerability in configuration modification permissions validation for Cisco Unified Communications Manager could allow an authenticated, remote attacker to perform a horizontal privilege escalation where one user can modify another user's configuration. The vulnerability is due to lack of proper Role Based Access Control (RBAC) when certain user con
cvelistv5nvd