Unified Communications Manager Security Vulnerabilities and Issues — Unified Communications Manager CVE List

Lucene search

CiscoUnified Communications Manager

3 matches found

CVE•added 2017/08/17 8:29 p.m.•51 views

CVE-2017-6785

A vulnerability in configuration modification permissions validation for Cisco Unified Communications Manager could allow an authenticated, remote attacker to perform a horizontal privilege escalation where one user can modify another user's configuration. The vulnerability is due to lack of proper...

4.3CVSS4.9AI score0.00171EPSS

CVE•added 2017/08/07 6:29 a.m.•49 views

CVE-2017-6757

A vulnerability in Cisco Unified Communications Manager 10.5(2.10000.5), 11.0(1.10000.10), and 11.5(1.10000.6) could allow an authenticated, remote attacker to conduct a blind SQL injection attack. The vulnerability is due to a failure to validate user-supplied input used in SQL queries that bypass...

8.8CVSS8.9AI score0.00679EPSS

CVE•added 2017/08/07 6:29 a.m.•39 views

CVE-2017-6758

A vulnerability in the web framework of Cisco Unified Communications Manager 11.5(1.10000.6) could allow an authenticated, remote attacker to access arbitrary files in the context of the web root directory structure on an affected device. The vulnerability is due to insufficient input validation by...

6.8CVSS6.4AI score0.01243EPSS