Vulnerability Description
Cisco Mobility Services Engine (MSE) 8.0(110.0) allows remote authenticated users to discover the passwords of arbitrary users by (1) reading log files or (2) using an unspecified GUI feature, aka Bug ID CSCut24792.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Mobility Services Engine | 8.0\(110.0\) |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=38007Vendor Advisory
- http://www.securitytracker.com/id/1031971
- http://tools.cisco.com/security/center/viewAlert.x?alertId=38007Vendor Advisory
- http://www.securitytracker.com/id/1031971
FAQ
What is CVE-2015-0673?
CVE-2015-0673 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Cisco Mobility Services Engine (MSE) 8.0(110.0) allows remote authenticated users to discover the passwords of arbitrary users by (1) reading log files or (2) using an unspecified GUI feature, aka Bug...
How severe is CVE-2015-0673?
CVE-2015-0673 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0673?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Mobility Services Engine.