CVE-2015-4274

CVE Database · CVE-2015-4274

CVE-2015-4274

· N/AModified

CVSS v3.1

N/A

EPSS

0.82%

Published

Jul 16, 2015

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified Intelligence Center 10.0(1) and 10.6(1) allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCuu94862 and CSCuu97936.

Weaknesses (CWE)

CWE-352

Affected Products (2)

cisco · unified_intelligence_centervulnerable

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=39920

Vendor Advisory

http://www.securitytracker.com/id/1032962

http://tools.cisco.com/security/center/viewAlert.x?alertId=39920

Vendor Advisory

http://www.securitytracker.com/id/1032962

KEV Catalog EPSS Scores Vendors All CVEs