CVE-2017-6668

Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager (CUCDM) could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. More Information: CSCvc52784 CSCvc97648. Known Affected Releases: 8.1(7)ER1.

Severity	MEDIUM
CVSS	4.9
EPSS	0.20% EPSS low
CWE	CWE-89
KEV
Published	8 years ago
Modified	1 week ago

Public Affected Products

Product	Advisory	Evidence
Cisco Unified Communications Domain Manager	cisco-sa-20170607-cucm2	Cisco CSAF · structured affected