CVE-2015-0680
Cisco Unified Call Manager (CM) 9.1(2.1000.28) is affected by an arbitrary file-read vulnerability caused by improper restriction of resource requests. An authenticated, remote attacker could read arbitrary files on the targeted device via unspecified vectors. This requires authentication, mitiga...