Information disclosure in Cisco Unified_communications_domain_manager

CVE-2015-4229

The web framework in Cisco Unified Communications Domain Manager 8.1(4)ER1 allows remote attackers to obtain sensitive information by visiting a bvsmweb URL, aka Bug ID CSCuq22589.

Vulnerability class: Information Disclosure

EPSS: 0.004 (62.8th percentile) — read the EPSS interpretation.

Affected products

Cisco Unified_communications_domain_manager — versions 8.1.4er1
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

1032749 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
75473 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
20150629 Cisco Unified Communications Domain Manager Information Disclosure Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)