CVE-2015-6425 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2015-6425

CWE

https://cwe.mitre.org/data/definitions/399.html

The WebApplications Identity Management subsystem in Cisco Unified Communications Manager 10.5(0.98000.88) allows remote attackers to cause a denial of service (subsystem outage) via invalid session tokens, aka Bug ID CSCul83786.

Affected Software

Name	Vendor	Start Version	End Version
Unified_communications_manager	Cisco	10.5(0.98000.88) (including)	10.5(0.98000.88) (including)

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151215-ucmim
http://www.securityfocus.com/bid/79275
http://www.securitytracker.com/id/1034431