Directory Traversal Flaw in Cisco Unified Customer Voice Portal Software
CVE-2013-1224

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Customer Voice Portal
Vendor: CVE Published:; 9 May 2013

Summary

A directory traversal vulnerability exists in the Resource Manager component of Cisco Unified Customer Voice Portal Software prior to version 9.0.1 ES 11. This flaw allows remote attackers to exploit improperly validated input through crafted HTTP or HTTPS requests, enabling them to overwrite arbitrary files on the affected system. This exploitation can lead to unauthorized access to sensitive information or system manipulation, posing significant risks to the integrity and security of the affected applications.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 9, 2013