CVE-2013-6983

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Presence Server
Vendor: CVE Published:; 31 December 2013

Summary

SQL injection vulnerability in the web interface in Cisco Unified Presence Server allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuh35615.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://secunia.com/advisories/56273

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id/1029547

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Dec 31, 2013
Vulnerability Reserved
Dec 5, 2013