A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affected device. This vulnerability is due to insufficient file permission restrictions. An attacker could exploit this vulnerability by sending a crafted command from the API to the application. A successful exploit could allow the attacker to read arbitrary files on the underlying operating system of the affected device. The attacker would need valid user credentials to exploit this vulnerability.
{"id": "CVE-2022-20791", "vendorId": null, "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2022-20791", "description": "A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affected device. This vulnerability is due to insufficient file permission restrictions. An attacker could exploit this vulnerability by sending a crafted command from the API to the application. A successful exploit could allow the attacker to read arbitrary files on the underlying operating system of the affected device. The attacker would need valid user credentials to exploit this vulnerability.", "published": "2022-07-06T21:15:00", "modified": "2022-07-14T14:51:00", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "SINGLE", "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0}, "severity": "MEDIUM", "exploitabilityScore": 8.0, "impactScore": 2.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM"}, "exploitabilityScore": 2.8, "impactScore": 3.6}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-20791", "reporter": "psirt@cisco.com", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-afr-YBFLNyzd"], "cvelist": ["CVE-2022-20791"], "immutableFields": [], "lastseen": "2022-07-14T16:17:40", "viewCount": 174, "enchantments": {"twitter": {"counter": 5, "tweets": [{"link": "https://twitter.com/threatintelctr/status/1544799168522321923", "text": " NEW: CVE-2022-20791 A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Ci... (click for more) https://t.co/5Rfbc6CHIB", "author": "threatintelctr", "author_photo": "https://pbs.twimg.com/profile_images/904224973987840000/dMy1x9Ho_400x400.jpg"}, {"link": "https://twitter.com/VulmonFeeds/status/1544812006896816128", "text": "CVE-2022-20791\n\nA vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unif...\n\nhttps://t.co/UHvNKTnDiD", "author": "VulmonFeeds", "author_photo": "https://pbs.twimg.com/profile_images/945758793161498625/67b3PEYK_400x400.jpg"}, {"link": "https://twitter.com/CVEnew/status/1544814751515115520", "text": "CVE-2022-20791 A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM &... https://t.co/w7T99EP1mM", "author": "CVEnew", "author_photo": "https://pbs.twimg.com/profile_images/1447927972393111557/PQRMlVvZ_400x400.jpg"}, {"link": "https://twitter.com/threatintelctr/status/1547600125152804864", "text": " NEW: CVE-2022-20791 A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Ci... (click for more) Severity: MEDIUM https://t.co/5Rfbc6l6k1", "author": "threatintelctr", "author_photo": "https://pbs.twimg.com/profile_images/904224973987840000/dMy1x9Ho_400x400.jpg"}]}, "score": {"value": 3.8, "vector": "NONE"}, "dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CUCM-IMP-AFR-YBFLNYZD"]}, {"type": "nessus", "idList": ["CISCO-SA-CUCM-IMP-AFR-YBFLNYZD.NASL", "CISCO-SA-CUCM-IMP-AFR-YBFLNYZD_IMP.NASL"]}]}, "vulnersScore": 3.8}, "_state": {"twitter": 1657816553, "score": 1660017089, "dependencies": 1660016946}, "_internal": {"score_hash": "7a7f3ea0a385f3bd93b7f1cac312e498"}, "cna_cvss": {"cna": "Cisco Systems, Inc.", "cvss": {"3": {"vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "score": 6.5}}}, "cpe": ["cpe:/a:cisco:unified_communications_manager:11.5\\(1.10000.6\\)", "cpe:/a:cisco:unified_communications_manager:12.5\\(1.10000.22\\)", "cpe:/a:cisco:unified_communications_manager_im_and_presence_service:12.5\\(1\\)", "cpe:/a:cisco:unified_communications_manager:14.0\\(1.10000.20\\)"], "cpe23": ["cpe:2.3:a:cisco:unified_communications_manager:14.0\\(1.10000.20\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_communications_manager:12.5\\(1.10000.22\\):*:*:*:session_management:*:*:*", "cpe:2.3:a:cisco:unified_communications_manager:12.5\\(1.10000.22\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5\\(1\\):*:*:*:*:*:*:*", "cpe:2.3:a:cisco:unified_communications_manager:11.5\\(1.10000.6\\):*:*:*:session_management:*:*:*", "cpe:2.3:a:cisco:unified_communications_manager:14.0\\(1.10000.20\\):*:*:*:session_management:*:*:*", "cpe:2.3:a:cisco:unified_communications_manager:11.5\\(1.10000.6\\):*:*:*:*:*:*:*"], "cwe": ["CWE-22"], "affectedSoftware": [{"cpeName": "cisco:unified_communications_manager", "version": "12.5\\(1.10000.22\\)", "operator": "le", "name": "cisco unified communications manager"}, {"cpeName": "cisco:unified_communications_manager", "version": "14.0\\(1.10000.20\\)", "operator": "le", "name": "cisco unified communications manager"}, {"cpeName": "cisco:unified_communications_manager", "version": "12.5\\(1.10000.22\\)", "operator": "le", "name": "cisco unified communications manager"}, {"cpeName": "cisco:unified_communications_manager", "version": "11.5\\(1.10000.6\\)", "operator": "le", "name": "cisco unified communications manager"}, {"cpeName": "cisco:unified_communications_manager", "version": "11.5\\(1.10000.6\\)", "operator": "le", "name": "cisco unified communications manager"}, {"cpeName": "cisco:unified_communications_manager", "version": "14.0\\(1.10000.20\\)", "operator": "le", "name": "cisco unified communications manager"}, {"cpeName": "cisco:unified_communications_manager_im_and_presence_service", "version": "12.5\\(1\\)", "operator": "le", "name": "cisco unified communications manager im and presence service"}, {"cpeName": "cisco:unified_communications_manager_im_and_presence_service", "version": "14su2", "operator": "lt", "name": "cisco unified communications manager im and presence service"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager:12.5\\(1.10000.22\\):*:*:*:*:*:*:*", "versionStartIncluding": "12.5", "versionEndIncluding": "12.5\\(1.10000.22\\)", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager:14.0\\(1.10000.20\\):*:*:*:session_management:*:*:*", "versionStartIncluding": "14.0", "versionEndIncluding": "14.0\\(1.10000.20\\)", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager:12.5\\(1.10000.22\\):*:*:*:session_management:*:*:*", "versionStartIncluding": "12.5", "versionEndIncluding": "12.5\\(1.10000.22\\)", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager:11.5\\(1.10000.6\\):*:*:*:session_management:*:*:*", "versionEndIncluding": "11.5\\(1.10000.6\\)", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager:11.5\\(1.10000.6\\):*:*:*:*:*:*:*", "versionEndIncluding": "11.5\\(1.10000.6\\)", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager:14.0\\(1.10000.20\\):*:*:*:*:*:*:*", "versionStartIncluding": "14.0", "versionEndIncluding": "14.0\\(1.10000.20\\)", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5\\(1\\):*:*:*:*:*:*:*", "versionEndIncluding": "12.5\\(1\\)", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14su2:*:*:*:*:*:*:*", "versionStartIncluding": "14.0", "versionEndExcluding": "14su2", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-afr-YBFLNyzd", "name": "20220706 Cisco Unified Communications Products Arbitrary File Read Vulnerability", "refsource": "CISCO", "tags": ["Vendor Advisory"]}]}
{"nessus": [{"lastseen": "2022-08-01T19:00:16", "description": "The version of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) installed on the remote host is prior to 14SU2. It is, therefore, affected by a file read vulnerability. Due to insufficient file permissions, an authenticated remote attacker could read arbitrary files on the underlying operating system.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"score": 6.5, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "published": "2022-07-08T00:00:00", "type": "nessus", "title": "Cisco Unified Communications Manager IM & Presence File Read Vulnerability (isco-sa-cucm-imp-afr-YBFLNyzd)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2022-20791"], "modified": "2022-07-11T00:00:00", "cpe": ["cpe:/a:cisco:unified_communications_manager_im_and_presence_service"], "id": "CISCO-SA-CUCM-IMP-AFR-YBFLNYZD_IMP.NASL", "href": "https://www.tenable.com/plugins/nessus/162882", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(162882);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2022/07/11\");\n\n script_cve_id(\"CVE-2022-20791\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvz07265\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvz32980\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cucm-imp-afr-YBFLNyzd\");\n script_xref(name:\"IAVA\", value:\"2022-A-0266\");\n\n script_name(english:\"Cisco Unified Communications Manager IM & Presence File Read Vulnerability (isco-sa-cucm-imp-afr-YBFLNyzd)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) installed on the remote\nhost is prior to 14SU2. It is, therefore, affected by a file read vulnerability. Due to insufficient file permissions,\nan authenticated remote attacker could read arbitrary files on the underlying operating system.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-afr-YBFLNyzd\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?ce881eef\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvz07265\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvz32980\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in Cisco bug IDs CSCvz07265, CSCvz32980\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2022-20791\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_cwe_id(36);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2022/07/06\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2022/07/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2022/07/08\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:unified_communications_manager_im_and_presence_service\");\n script_set_attribute(attribute:\"stig_severity\", value:\"II\");\n script_set_attribute(attribute:\"thorough_tests\", value:\"false\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CISCO\");\n\n script_copyright(english:\"This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_cucm_imp_detect.nbin\");\n script_require_keys(\"installed_sw/Cisco Unified CM IM&P\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app = 'Cisco Unified CM IM&P';\n\nvar app_info = vcf::get_app_info(app:app);\n\n# 14SU2 - https://software.cisco.com/download/home/286328299/type/282074312/release/14SU2\nvar constraints = [\n { 'min_verion': '10.5', 'fixed_version': '14.0.1.12900.6', 'fixed_display' : '14SU2' }\n];\n\nvcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);\n\n\n", "cvss": {"score": 4, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}}, {"lastseen": "2022-08-01T19:00:36", "description": "The version of Cisco Unified Communications Manager (Unified CM) installed on the remote host is prior to 14SU2. It is, therefore, affected by a file read vulnerability. Due to insufficient file permissions, an authenticated remote attacker could read arbitrary files on the underlying operating system.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"score": 6.5, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "published": "2022-07-08T00:00:00", "type": "nessus", "title": "Cisco Unified Communications Manager File Read (cisco-sa-cucm-imp-afr-YBFLNyzd)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2022-20791"], "modified": "2022-07-11T00:00:00", "cpe": ["cpe:/a:cisco:unified_communications_manager"], "id": "CISCO-SA-CUCM-IMP-AFR-YBFLNYZD.NASL", "href": "https://www.tenable.com/plugins/nessus/162881", "sourceData": "##\n# (C) Tenable, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(162881);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2022/07/11\");\n\n script_cve_id(\"CVE-2022-20791\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvz07265\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvz32980\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cucm-imp-afr-YBFLNyzd\");\n script_xref(name:\"IAVA\", value:\"2022-A-0266\");\n\n script_name(english:\"Cisco Unified Communications Manager File Read (cisco-sa-cucm-imp-afr-YBFLNyzd)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Cisco Unified Communications Manager (Unified CM) installed on the remote host is prior to 14SU2. It\nis, therefore, affected by a file read vulnerability. Due to insufficient file permissions, an authenticated remote\nattacker could read arbitrary files on the underlying operating system.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-afr-YBFLNyzd\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?ce881eef\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvz07265\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvz32980\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in Cisco bug IDs CSCvz07265, CSCvz32980\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2022-20791\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_cwe_id(36);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2022/07/06\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2022/07/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2022/07/08\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"combined\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:unified_communications_manager\");\n script_set_attribute(attribute:\"stig_severity\", value:\"II\");\n script_set_attribute(attribute:\"thorough_tests\", value:\"false\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CISCO\");\n\n script_copyright(english:\"This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_ucm_detect.nbin\");\n script_require_keys(\"Host/Cisco/CUCM/Version\", \"Host/Cisco/CUCM/Version_Display\");\n\n exit(0);\n}\n\ninclude('ccf.inc');\n\nvar product_info = cisco::get_product_info(name:'Cisco Unified Communications Manager');\n\n# https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/rel_notes/14_0_1/SU2/cucm_b_release-notes-for-cucm-imp-14su2.html\nvar vuln_ranges = [{ 'min_ver' : '0.0', 'fix_ver' : '14.0.1.12900.161'}];\n\nvar reporting = make_array(\n 'port', 0,\n 'severity', SECURITY_WARNING,\n 'version', product_info['display_version'],\n 'bug_id', 'CSCvz07265, CSCvz32980',\n 'fix', '14SU2',\n 'disable_caveat', TRUE\n);\n\ncisco::check_and_report(\n product_info:product_info,\n reporting:reporting,\n vuln_ranges:vuln_ranges\n);\n", "cvss": {"score": 4, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}}], "cnvd": [{"lastseen": "2022-08-17T10:09:22", "description": "Cisco Unified Communications Manager (CUCM, Unified CM, CallManager) is a call processing component of Cisco's Unified Communications System. An arbitrary file read vulnerability exists in Cisco Unified Communications Manager, which stems from a failure to properly set file permissions. An authenticated remote attacker could exploit this vulnerability to read arbitrary files on the underlying operating system of the affected device.", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "baseScore": 6.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 3.6}, "published": "2022-07-07T00:00:00", "type": "cnvd", "title": "Cisco Unified Communications Manager Arbitrary File Read Vulnerability (CNVD-2022-50625)", "bulletinFamily": "cnvd", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "NONE", "integrityImpact": "NONE", "baseScore": 4.0, "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 2.9, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2022-20791"], "modified": "2022-07-10T00:00:00", "id": "CNVD-2022-50625", "href": "https://www.cnvd.org.cn/flaw/show/CNVD-2022-50625", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}}], "cisco": [{"lastseen": "2022-07-06T16:56:17", "description": "A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affected device.\n\nThis vulnerability is due to insufficient file permission restrictions. An attacker could exploit this vulnerability by sending a crafted command from the API to the application. A successful exploit could allow the attacker to read arbitrary files on the underlying operating system of the affected device. The attacker would need valid user credentials to exploit this vulnerability.\n\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\n\nThis advisory is available at the following link:\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-afr-YBFLNyzd [\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-afr-YBFLNyzd\"]", "cvss3": {}, "published": "2022-07-06T16:00:00", "type": "cisco", "title": "Cisco Unified Communications Products Arbitrary File Read Vulnerability", "bulletinFamily": "software", "cvss2": {}, "cvelist": ["CVE-2022-20791"], "modified": "2022-07-06T16:00:00", "id": "CISCO-SA-CUCM-IMP-AFR-YBFLNYZD", "href": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-afr-YBFLNyzd", "cvss": {"score": 6.5, "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}}]}
CVE-2022-20791
