2 matches found
CVE-2017-12214
CVE-2017-12214 describes an elevation-of-privilege flaw in the Cisco Unified CVP OAMP credential reset, arising from insufficient input validation. An authenticated, remote attacker could exploit a crafted HTTP request to gain administrator privileges on CVP systems running 10.5, 11.0, or 11.5. E...
CVE-2017-12214
A vulnerability in the Operations, Administration, Maintenance, and Provisioning OAMP credential reset functionality for Cisco Unified Customer Voice Portal CVP could allow an authenticated, remote attacker to gain elevated privileges. The vulnerability is due to a lack of proper input validation...