CVE-2015-6328 Information

Description

The web framework in Cisco Prime Collaboration Assurance (PCA) 10.5(1) allows remote authenticated users to bypass intended access restrictions and read arbitrary files via a crafted URL aka Bug ID CSCus88380.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151008-pca http://www.securitytracker.com/id/1033784