CVE-2016-1317

CWE-200Information Exposure4 documents4 sources
Severity
4.3MEDIUM
EPSS
0.2%
top 61.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Zyxel Gs1900-10hp Firmware
Timeline
PublishedFeb 9
Latest updateMay 17

Description

Cisco Unified Communications Manager 11.5(0.98000.480) allows remote authenticated users to obtain sensitive database table-name and entity-name information via a direct request to an unspecified URL, aka Bug ID CSCuy11098.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

NVDzyxel/gs1900-10hp_firmware< 2.50\(aazi.0\)c0

🔴Vulnerability Details

2
GHSA
GHSA-wx6v-v48x-7c97: Cisco Unified Communications Manager 112022-05-17
CVEList
CVE-2016-1317: Cisco Unified Communications Manager 112016-02-09

📋Vendor Advisories

1
Cisco
Cisco Unified Communications Manager Information Disclosure Vulnerability2016-02-08
CVE-2016-1317 (MEDIUM CVSS 4.3) | Cisco Unified Communications Manage | cvebase.io