Directory Traversal Vulnerability in Cisco Unified Customer Voice Portal (CVP) Software

Directory Traversal Vulnerability in Cisco Unified Customer Voice Portal (CVP) Software

CVE-2013-1224 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:C/A:N

Directory traversal vulnerability in the Resource Manager in Cisco Unified Customer Voice Portal (CVP) Software before 9.0.1 ES 11 allows remote attackers to overwrite arbitrary files via a crafted (1) HTTP or (2) HTTPS request that triggers incorrect parameter validation, aka Bug ID CSCub38369.

Learn more about our Cis Benchmark Audit For Cisco.