Cisco Unified Operations Manager : Security vulnerabilities, CVEs sql injection

CVE-2013-3437

SQL injection vulnerability in the management application in Cisco Unified Operations Manager allows remote authenticated users to execute arbitrary SQL commands via an entry field, aka Bug ID CSCud80179.

Max CVSS

6.5

EPSS Score

0.14%

Published

2013-07-23

Updated

2016-09-16

CVE-2011-0960

Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to execute arbitrary SQL commands via (1) the CCMs parameter to iptm/PRTestCreation.do or (2) the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug ID CSCtn61716.

Max CVSS

7.5

EPSS Score

0.49%

Published

2011-05-20

Updated

2017-08-17

2 vulnerabilities found

Cisco » Unified Operations Manager : Security Vulnerabilities, CVEs, (Sql injection)

CVE-2013-3437

CVE-2011-0960