Cisco : Security Vulnerabilities, CVEs, Published In June 2014 (Sql injection)
SQL injection vulnerability in BulkViewFileContentsAction.java in the Java interface in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to execute arbitrary SQL commands via crafted filename parameters in a URL, aka Bug ID CSCuo17337.
Max CVSS
4.0
EPSS Score
0.10%
Published
2014-06-10
Updated
2016-09-07
1 vulnerabilities found