CVE-2015-6401 Information

Description

Cisco EPC3928 devices with EDVA 5.5.10 5.5.11 and 5.7.1 allow remote attackers to bypass an intended authentication requirement and execute unspecified administrative functions via a crafted HTTP request aka Bug ID CSCux24941.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151208-cwr http://www.securitytracker.com/id/1034347 https://www.exploit-db.com/exploits/39904/