CVE-2015-4298

CVE Database · CVE-2015-4298

CVE-2015-4298

· N/AModified

CVSS v3.1

N/A

EPSS

2.46%

Published

Aug 19, 2015

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cisco Unified Web and E-Mail Interaction Manager 9.0(2) and 11.0(1) improperly performs authorization, which allows remote authenticated users to read or write to stored data via unspecified vectors, aka Bug ID CSCuo89056.

Weaknesses (CWE)

CWE-284

Affected Products (2)

cisco · unified_web_and_e-mail_interaction_managervulnerable

References (6)

http://tools.cisco.com/security/center/viewAlert.x?alertId=40428

Vendor Advisory

http://www.securityfocus.com/bid/76348

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1033286

Third Party AdvisoryVDB Entry

http://tools.cisco.com/security/center/viewAlert.x?alertId=40428

Vendor Advisory

http://www.securityfocus.com/bid/76348

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1033286

Third Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs