CVE-2018-0266

CVE-2018-0266

Vendor N/A
Product Cisco Unified Communications Manager
Weakness CWE-200 · Info exposure
Published April 19, 2018
Last update November 29, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protection of database tables over the web interface. An attacker could exploit this vulnerability by browsing to a specific URL. An exploit could allow the attacker to view configuration parameters. Cisco Bug IDs: CSCvf20218.

Key dates

02Disclosure timeline

April 19, 2018 CVE published
November 29, 2024 Record updated

Related vulnerabilities

04Related CVE