← Back to CVE List

CVE-2018-0267

Published: 2018-04-19T20:29Z
Last Modified: 2024-11-21T03:37Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, local attacker to view sensitive data that should be restricted. This could include LDAP credentials. The vulnerability is due to insufficient protection of database tables over the web interface. An attacker could exploit this vulnerability by browsing to a specific URL. An exploit could allow the attacker to view sensitive information that should have been restricted. Cisco Bug IDs: CSCvf22116. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt