Remote Code Execution Vulnerability in Cisco Unified Customer Voice Portal Software
CVE-2013-1221

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Customer Voice Portal
Vendor: CVE Published:; 9 May 2013

Summary

The Tomcat Web Management feature in Cisco Unified Customer Voice Portal Software prior to version 9.0.1 ES 11 presents a significant vulnerability due to improper configuration of Tomcat components. This flaw could allow remote attackers to execute arbitrary code through specially crafted HTTP or HTTPS requests, presenting a serious risk to the integrity and security of affected systems. For further details, refer to the advisory provided by Cisco.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 9, 2013