CVE-2015-4229

CWE-200 — Information Exposure4 documents4 sources

Severity

5.0MEDIUM

EPSS

0.4%

top 37.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Unified Communications Domain Manager

Timeline

PublishedJun 30

Latest updateMay 17

Description

The web framework in Cisco Unified Communications Domain Manager 8.1(4)ER1 allows remote attackers to obtain sensitive information by visiting a bvsmweb URL, aka Bug ID CSCuq22589.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcisco/unified_communications_domain_manager8.1.4er1

🔴Vulnerability Details

GHSA

GHSA-rf7x-69fc-g99g: The web framework in Cisco Unified Communications Domain Manager 8↗2022-05-17

▶

CVEList

CVE-2015-4229: The web framework in Cisco Unified Communications Domain Manager 8↗2015-06-30

▶

📋Vendor Advisories

Cisco

Cisco Unified Communications Domain Manager Information Disclosure Vulnerability↗2015-06-29

▶