QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-0198

Back to search

CVE-2018-0198

Published: Mar 27, 2018

Modified: Dec 2, 2024

PUBLISHED

Description

A vulnerability in the web framework of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protection of database tables. An attacker could exploit this vulnerability by browsing to a specific URL. A successful exploit could allow the attacker to view data library information. Cisco Bug IDs: CSCvh66592.

VendorProductVersions

n/a

Cisco Unified Communications Manager

affected
Cisco Unified Communications Manager

Weaknesses (CWE)

CWE-693

References

1040342
vdb-entry
x_refsource_SECTRACK
102965
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now