cbcvebase.
CVE-2006-2166
published 2006-05-04

CVE-2006-2166: Unspecified vulnerability in the HTTP management interface in Cisco Unity Express (CUE) 2.2(2) and earlier, when running on any CUE Advanced Integration Module…

PriorityP418low2.1CVSS 2.0
AVNACHAuSCNIPAN
EPSS
1.62%
73.0th percentile
Unspecified vulnerability in the HTTP management interface in Cisco Unity Express (CUE) 2.2(2) and earlier, when running on any CUE Advanced Integration Module (AIM) or Network Module (NM), allows remote authenticated attackers to reset the password for any user with an expired password.

Affected

4 ranges
VendorProductVersion rangeFixed in
ciscounity_express_expired_password_reset
ciscounity_express_software
ciscounity_express_software
ciscounity_express_software
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.