CVE-2015-6406

Cisco Emergency Responder 10.5(1.10000.5) - Authenticated Path Traversal and Arbitrary File Write via Tools Menu

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in the Tools menu in Cisco Emergency Responder 10.5(1.10000.5) allows remote authenticated users to write to arbitrary files via a crafted filename, aka Bug ID CSCuv21781.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1034384
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/78816

Scores

EPSS 0.0231
EPSS Percentile 81.3%

Details

CWE
CWE-22
Status published
Products (1)
cisco/emergency_responder 10.5\(1.10000.5\)
Published Dec 13, 2015
Tracked Since Feb 18, 2026