Directory Traversal Vulnerability in Cisco Unified Communications Manager and Contact Center Express
CVE-2011-3315

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Ip Interactive Voice Response; Unified Ip Ivr
Vendor: CVE Published:; 27 October 2011

Summary

This vulnerability allows remote attackers to exploit directory traversal weaknesses in Cisco Unified Communications Manager and Unified Contact Center Express, facilitating unauthorized access to sensitive files through crafted URLs. This security flaw can potentially lead to the exposure of critical system information, compromising the integrity and confidentiality of the affected systems.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

EPSS Score

88% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 27, 2011