Cisco Prime Collaboration Assurance Arbitrary File Retrieval Vulnerability
The vulnerability is due to incorrect implementation of the access control code. An attacker could exploit this vulnerability by submitting a crafted URL to the system.
Cisco has released software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are not available.
This advisory is available at the following link: http://ift.tt/1L9osEh
from Cisco Security Advisory http://ift.tt/1L9osEh