CVE-2018-0135

CVE-2018-0135

Vendor N/A
Product Cisco Unified Communications Manager
Weakness CWE-20 · Input validation
Published February 8, 2018
Last update December 2, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability in Cisco Unified Communications Manager could allow an authenticated, remote attacker to access sensitive information on an affected system. The vulnerability exists because the affected software improperly validates user-supplied search input. An attacker could exploit this vulnerability by sending malicious requests to an affected system. A successful exploit could allow the attacker to retrieve sensitive information from the affected system. Cisco Bug IDs: CSCvf17644.

Key dates

02Disclosure timeline

February 8, 2018 CVE published
December 2, 2024 Record updated