Vulnerability Details CVE-2016-6364
The User Data Services (UDS) API implementation in Cisco Unified Communications Manager 11.5 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified API calls, aka Bug ID CSCux67855.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-ucm
- http://www.securityfocus.com/bid/92517
- http://www.securitytracker.com/id/1036650
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-ucm
- http://www.securityfocus.com/bid/92517
- http://www.securitytracker.com/id/1036650
Products affected by CVE-2016-6364
-
cpe:2.3:a:cisco:unified_communications_manager:11.5.0