CVE-2022-20790
Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (Unified CM SME) suffer an arbitrary file read vulnerability in the web-based management interface due to insufficient input validation that allows directory traversal. An authenticated, remote attacker co...