CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-1226

A vulnerability in the audit logging component of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, Cisco Unity Connection, Cisco Emergency Responder, and Cisco Prime License Manager could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. The vulnerability is due to the storage of certain unencrypted credentials. An attacker could exploit this vulnerability by accessing the audit logs on an affected system and obtaining credentials that they may not normally have access to. A successful exploit could allow the attacker to use those credentials to discover and manage network devices.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.3%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

Products affected by CVE-2021-1226

Cisco » Emergency Responder » Version: 10.5(2)

cpe:2.3:a:cisco:emergency_responder:10.5(2)
Cisco » Emergency Responder » Version: 11.5(1)

cpe:2.3:a:cisco:emergency_responder:11.5(1)
Cisco » Emergency Responder » Version: 12.0(1)

cpe:2.3:a:cisco:emergency_responder:12.0(1)
Cisco » Emergency Responder » Version: 12.5(1)

cpe:2.3:a:cisco:emergency_responder:12.5(1)
Cisco » Emergency Responder » Version: 12.5(1)su1

cpe:2.3:a:cisco:emergency_responder:12.5(1)su1
Cisco » Emergency Responder » Version: 12.5(1)su2

cpe:2.3:a:cisco:emergency_responder:12.5(1)su2
Cisco » Prime License Manager » Version: 10.5(2)

cpe:2.3:a:cisco:prime_license_manager:10.5(2)
Cisco » Prime License Manager » Version: 11.5(1)

cpe:2.3:a:cisco:prime_license_manager:11.5(1)
Cisco » Prime License Manager » Version: 11.5(1)su1

cpe:2.3:a:cisco:prime_license_manager:11.5(1)su1
Cisco » Prime License Manager » Version: 11.5(1)su1a

cpe:2.3:a:cisco:prime_license_manager:11.5(1)su1a
Cisco » Prime License Manager » Version: 11.5(1)su2

cpe:2.3:a:cisco:prime_license_manager:11.5(1)su2
Cisco » Prime License Manager » Version: 11.5(1)su5

cpe:2.3:a:cisco:prime_license_manager:11.5(1)su5
Cisco » Prime License Manager » Version: 11.5(1)su6

cpe:2.3:a:cisco:prime_license_manager:11.5(1)su6
Cisco » Unified Communications Manager » Version: 10.5(2)

cpe:2.3:a:cisco:unified_communications_manager:10.5(2)
Cisco » Unified Communications Manager » Version: 11.5(1)

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)
Cisco » Unified Communications Manager » Version: 11.5(1)su1

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)su1
Cisco » Unified Communications Manager » Version: 11.5(1)su2

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)su2
Cisco » Unified Communications Manager » Version: 11.5(1)su3

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)su3
Cisco » Unified Communications Manager » Version: 11.5(1)su4

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)su4
Cisco » Unified Communications Manager » Version: 11.5(1)su5

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)su5
Cisco » Unified Communications Manager » Version: 11.5(1)su7

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)su7
Cisco » Unified Communications Manager » Version: 11.5(1)su8

cpe:2.3:a:cisco:unified_communications_manager:11.5(1)su8
Cisco » Unified Communications Manager Im & Presence Service » Version: 10.5(2)

cpe:2.3:a:cisco:unified_communications_manager_im_&_presence_service:10.5(2)
Cisco » Unified Communications Manager Im & Presence Service » Version: 11.5(1)

cpe:2.3:a:cisco:unified_communications_manager_im_&_presence_service:11.5(1)
Cisco » Unified Communications Manager Im & Presence Service » Version: 12.0(1)

cpe:2.3:a:cisco:unified_communications_manager_im_&_presence_service:12.0(1)
Cisco » Unified Communications Manager Im & Presence Service » Version: 12.5(1)

cpe:2.3:a:cisco:unified_communications_manager_im_&_presence_service:12.5(1)
Cisco » Unity Connection » Version: 10.5(2)

cpe:2.3:a:cisco:unity_connection:10.5(2)
Cisco » Unity Connection » Version: 11.5(1)

cpe:2.3:a:cisco:unity_connection:11.5(1)
Cisco » Unity Connection » Version: 11.5(1)su3

cpe:2.3:a:cisco:unity_connection:11.5(1)su3
Cisco » Unity Connection » Version: 11.5(1)su8

cpe:2.3:a:cisco:unity_connection:11.5(1)su8
Cisco » Unity Connection » Version: 12.0(1)

cpe:2.3:a:cisco:unity_connection:12.0(1)
Cisco » Unity Connection » Version: 12.5(1)

cpe:2.3:a:cisco:unity_connection:12.5(1)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-1226

Products

Pricing

Contact Us