PT-2016-6936 · Cisco · Cisco Unified Communications Manager Im/Presence Service

Published

2016-12-14

Updated

2017-01-05

CVE-2016-6464

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager IM and Presence Service version 11.5(1)

Description A vulnerability in the web management interface could allow an unauthenticated, remote attacker to view information on web pages that should be restricted.

Recommendations For version 11.5(1), update to version 11.5(1.12000.2) or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2016-6464

Affected Products

Cisco Unified Communications Manager Im/Presence Service

PT-2016-6936 · Cisco · Cisco Unified Communications Manager Im/Presence Service

CVE-2016-6464

Weakness Enumeration

Related Identifiers

Affected Products

References · 5