CVE-2017-6668
N/A
N/A
Summary
Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager (CUCDM) could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. More Information: CSCvc52784 CSCvc97648. Known Affected Releases: 8.1(7)ER1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Cisco Unified Communications Domain Manager | Cisco Unified Communications Domain Manager | affected |
Weaknesses
- SQL Injection Vulnerabilities
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/98947
- http://www.securitytracker.com/id/1038632
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-cucm2
References
- http://www.securityfocus.com/bid/98947
- http://www.securitytracker.com/id/1038632
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-cucm2
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.