Cisco Unified Communications Manager MRA Service Identity Validation Bypass Vulnerability

Cisco Unified Communications Manager MRA Service Identity Validation Bypass Vulnerability

CVE-2015-6410 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communications Manager mishandles edge-device identity validation, which allows remote attackers to bypass intended call-reception and call-setup restrictions by spoofing a user, aka Bug ID CSCuu97283.

Learn more about our Cis Benchmark Audit For Cisco.