CVE-2015-6407

Cisco Emergency Responder 10.5(3.10000.9) - Arbitrary File Upload via Crafted Parameter

Title source: llm
STIX 2.1

Description

Cisco Emergency Responder 10.5(3.10000.9) allows remote attackers to upload files to arbitrary locations via a crafted parameter, aka Bug ID CSCuv25501.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1034383
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/78817

Scores

EPSS 0.0162
EPSS Percentile 73.2%

Details

CWE
CWE-20
Status published
Products (1)
cisco/emergency_responder 10.5\(3.10000.9\)
Published Dec 13, 2015
Tracked Since Feb 18, 2026