exploitDog

CVE-2015-4222

Опубликовано: 26 июн. 2015

Источник: nvd

CVSS2: 6.5

EPSS Низкий

Описание

SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuq46325.

Ссылки

http://tools.cisco.com/security/center/viewAlert.x?alertId=39506
Vendor Advisory
http://www.securityfocus.com/bid/75400
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032716
Third Party Advisory
VDB Entry
http://tools.cisco.com/security/center/viewAlert.x?alertId=39506
Vendor Advisory
http://www.securityfocus.com/bid/75400
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032716
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:9.1\(1\):*:*:*:*:*:*:*

EPSS

Процентиль: 65%

0.00495

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-2w2h-3v4h-88j6

github

больше 3 лет назад

SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuq46325.

EPSS

Процентиль: 65%

0.00495

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-89