SQL Injection Vulnerability in Cisco Unified Communications Manager (UCM) IVR Component (Bug ID CSCut21563)

CVE-2015-0699 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified Communications Manager (UCM) 10.5(1.98991.13) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCut21563.

Learn more about our Cis Benchmark Audit For Cisco.