The vulnerability in the web interface for managing the Cisco Unity Connection integrated messaging system allows a hacker to re-write files in the basic file system.

The vulnerability in the web interface for managing the Cisco Unity Connection integrated messaging system exists due to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to re-write files in the...