VYPR
Medium severity4.3NVD Advisory· Published Sep 12, 2016· Updated Jun 17, 2026

CVE-2016-6370

CVE-2016-6370

Description

Directory traversal vulnerability in the web interface in Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) 10.6(3) and earlier allows remote authenticated users to read arbitrary files via a crafted pathname in an HTTP request, aka Bug ID CSCuz27255.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6\(1\)_base:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6\(1\)_base:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6\(2\)_base:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:hosted_collaboration_mediation_fulfillment:10.6\(3\)_base:*:*:*:*:*:*:*
    • (no CPE)range: <=10.6(3)

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.