3 matches found
CVE-2023-20010
A vulnerability in the web-based management interface of Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This...
CVE-2023-20010
creationtimestamp| type| source ---|---|--- 2023-01-20 13:10:10+00:00| seen| https://t.me/truesecator/3967...
CVE-2023-20010
CVE-2023-20010 affects Cisco Unified Communications Manager (CUCM) and CUCM Session Management Edition (SME). The issue is a web interface input-validation flaw that enables an SQL injection when an authenticated, low-privileged user sends crafted queries. Impact shown in sources: read/modify dat...