cbcvebase.
CVE-2016-1308
published 2016-02-07

CVE-2016-1308: SQL injection vulnerability in Cisco Unified Communications Manager 10.5(2.13900.9) allows remote authenticated users to execute arbitrary SQL commands via a…

medium6.5CVSS 3.0
AVNACLPRLUINSUCHINAN
SQL injection vulnerability in Cisco Unified Communications Manager 10.5(2.13900.9) allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCux99227.

Affected

2 ranges
VendorProductVersion rangeFixed in
ciscounified_communications_manager
samsungx14j_firmware