CVE-2017-6668

Summary

Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager (CUCDM) could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. More Information: CSCvc52784 CSCvc97648. Known Affected Releases: 8.1(7)ER1.

Affected Software

VendorProductVersion RangeStatus
n/aCisco Unified Communications Domain ManagerCisco Unified Communications Domain Manageraffected

Weaknesses

  • SQL Injection Vulnerabilities

ADP Enrichment

CVE Program Container

Additional References

References