XML External Entity Vulnerability in Cisco Unified Customer Voice Portal Software
CVE-2013-1225

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Customer Voice Portal
Vendor: CVE Published:; 9 May 2013

Summary

A vulnerability exists in Cisco Unified Customer Voice Portal Software that allows remote attackers to exploit XML External Entities (XXE) through specially crafted HTTP or HTTPS requests. This could lead to unauthorized file access on the affected system, potentially exposing sensitive information.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 9, 2013