Описание
Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to bypass authentication and read or modify system configuration parameters by going to a specific link more than once.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:unity:4.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.0\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.0\(2\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.0\(3\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.0\(3\):sr1:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.0\(4\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.0\(4\):sr1:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.0\(5\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.1\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:4.2\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:5.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:5.0\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:7.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unity:7.0\(2\):*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00481
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
почти 4 года назад
Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to bypass authentication and read or modify system configuration parameters by going to a specific link more than once.
EPSS
Процентиль: 65%
0.00481
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-287