Cisco » Unified Communications Manager » 11.5(1) : Security Vulnerabilities, CVEs, (Information Leak)
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote attacker to view sensitive information in the web-based management interface of the affected software. The vulnerability is due to insufficient protection of user-supplied input by the web-based management interface of the affected service. An attacker could exploit this vulnerability by accessing the interface and viewing restricted portions of the software configuration. A successful exploit could allow the attacker to gain access to sensitive information or conduct further attacks.
Max CVSS
6.5
EPSS Score
0.15%
Published
2020-09-23
Updated
2021-10-29
1 vulnerabilities found