CVE-2014-3339
The CVE-2014-3339 issue affects Cisco Unified Communications Manager (CM) and Cisco Unified Presence Server (CUPS). The root cause is insufficient sanitization of user-supplied input in the administrative web interface, enabling an authenticated, remote attacker to perform SQL injection on unspec...