CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
45.3%
SQL injection vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(2) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuh81766.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_communications_manager | 7.1(2a) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(2a)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2a\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(2b) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(2b)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(2b\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3a) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3a\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3a)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3a\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3a)su1a | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3a\)su1a:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3b) | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3b\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 7.1(3b)su1 | cpe:2.3:a:cisco:unified_communications_manager:7.1\(3b\)su1:*:*:*:*:*:*:* |