Cisco : Security Vulnerabilities, CVEs, Published In 2008 (Sql injection)
SQL injection vulnerability in Cisco Unified CallManager/Communications Manager (CUCM) 5.0/5.1 before 5.1(3a) and 6.0/6.1 before 6.1(1a) allows remote authenticated users to execute arbitrary SQL commands via the key parameter to the (1) admin and (2) user interface pages.
Max CVSS
6.5
EPSS Score
0.15%
Published
2008-02-14
Updated
2017-08-08
1 vulnerabilities found