CVE-2015-6364

Published: Nov 14, 2015Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Cisco Content Delivery System Manager Software 3.2 on Videoscape Distribution Suite Service Manager allows remote attackers to obtain sensitive information via crafted URLs in REST API requests, aka Bug ID CSCuv86960.

Affected (1)

Products: Cisco: Videoscape Distribution Suite Service Manager

Cisco

1 product

Videoscape Distribution Suite Service Manager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cisco Videoscape Distribution Suite Service Manager	Up to 3.2.0

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-vds

Source: psirt@cisco.com

Vendor Advisory

http://www.securitytracker.com/id/1034159

Source: psirt@cisco.com

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-vds

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1034159

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.