CVE-2015-0673

Cisco Mobility Services Engine 8.0(110.0) - Authenticated Sensitive Information Exposure via Log Files or GUI

Title source: llm
STIX 2.1

Description

Cisco Mobility Services Engine (MSE) 8.0(110.0) allows remote authenticated users to discover the passwords of arbitrary users by (1) reading log files or (2) using an unspecified GUI feature, aka Bug ID CSCut24792.

References (2)

Core 2
Core References
Vendor Advisory vendor-advisory x_refsource_cisco
http://tools.cisco.com/security/center/viewAlert.x?alertId=38007
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031971

Scores

EPSS 0.0133
EPSS Percentile 67.6%

Details

CWE
CWE-200
Status published
Products (1)
cisco/mobility_services_engine 8.0\(110.0\)
Published Mar 26, 2015
Tracked Since Feb 18, 2026