CVE-2019-1911

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Domain Manager (Cisco Unified CDM) Software (affected versions not specified)

Description The issue is related to insufficient input validation of shell commands in the CLI, which could allow an authenticated, local attacker to escape the restricted shell. An attacker could exploit this by executing crafted commands in the shell, potentially accessing commands in the context of the restricted shell user without gaining root privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.