CVE-2014-3287
EUVD-2014-330010.06.2014, 11:19
SQL injection vulnerability in BulkViewFileContentsAction.java in the Java interface in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to execute arbitrary SQL commands via crafted filename parameters in a URL, aka Bug ID CSCuo17337.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| cisco | unified_communications_manager | * |
𝑥
= Vulnerable software versions
References