Lucene search

[email protected]CVE-2012-0366

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-0366

2022-10-0316:15:40

CWE-264

[email protected]

web.nvd.nist.gov

cisco

unity connection

administrative password

remote authentication

help desk administrator role

cve-2012-0366

nvd

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

51.7%

JSON

Cisco Unity Connection before 7.1.3b(Su2) allows remote authenticated users to change the administrative password by leveraging the Help Desk Administrator role, aka Bug ID CSCtd45141.

Affected configurations

NVD

Node

ciscounity_connectionRange≤7.1\(3b\)su1

ciscounity_connectionMatch1.1

ciscounity_connectionMatch1.1\(1\)

ciscounity_connectionMatch1.1\(1\)_es1

ciscounity_connectionMatch1.1\(1\)_es12

ciscounity_connectionMatch1.1\(1\)_sr1

ciscounity_connectionMatch1.2

ciscounity_connectionMatch1.2\(1\)

ciscounity_connectionMatch1.2\(1\)_es65

ciscounity_connectionMatch1.2\(1\)sr2

ciscounity_connectionMatch2.0

ciscounity_connectionMatch2.0\(1\)

ciscounity_connectionMatch2.1

ciscounity_connectionMatch2.1\(1\)

ciscounity_connectionMatch2.1\(2\)

ciscounity_connectionMatch2.1\(3\)

ciscounity_connectionMatch2.1\(3b\)su1

ciscounity_connectionMatch2.1\(4\)

ciscounity_connectionMatch2.1\(4\)su1

ciscounity_connectionMatch2.1\(4a\)

ciscounity_connectionMatch2.1\(4a\)su2

ciscounity_connectionMatch2.1\(5\)

ciscounity_connectionMatch2.1\(5\)su1

ciscounity_connectionMatch2.1\(5\)su2

ciscounity_connectionMatch2.1\(5\)su3

ciscounity_connectionMatch6.1\(3b\)su1

ciscounity_connectionMatch7.0

ciscounity_connectionMatch7.0\(2\)

ciscounity_connectionMatch7.0\(2a\)su2

ciscounity_connectionMatch7.0\(2a\)su3

ciscounity_connectionMatch7.1

ciscounity_connectionMatch7.1\(2\)

ciscounity_connectionMatch7.1\(2a\)

ciscounity_connectionMatch7.1\(2a\)su1

ciscounity_connectionMatch7.1\(2b\)

ciscounity_connectionMatch7.1\(2b\)su1

ciscounity_connectionMatch7.1\(3\)

ciscounity_connectionMatch7.1\(3a\)

ciscounity_connectionMatch7.1\(3a\)su1

ciscounity_connectionMatch7.1\(3a\)su1a

ciscounity_connectionMatch7.1\(3b\)

ciscounity_connectionMatch7.1\(5\)

ciscounity_connectionMatch7.1\(5\)su1a

ciscounity_connectionMatch7.1\(5a\)

ciscounity_connectionMatch7.1\(5b\)

ciscounity_connectionMatch7.1\(5b\)su2

ciscounity_connectionMatch7.1\(5b\)su3

ciscounity_connectionMatch7.1\(5b\)su4

CPENameOperatorVersion
cisco:unity_connectioncisco unity connectionle7.1\(3b\)su1
cisco:unity_connectioncisco unity connectioneq1.1
cisco:unity_connectioncisco unity connectioneq1.1\(1\)
cisco:unity_connectioncisco unity connectioneq1.1\(1\)_es1
cisco:unity_connectioncisco unity connectioneq1.1\(1\)_es12
cisco:unity_connectioncisco unity connectioneq1.1\(1\)_sr1
cisco:unity_connectioncisco unity connectioneq1.2
cisco:unity_connectioncisco unity connectioneq1.2\(1\)
cisco:unity_connectioncisco unity connectioneq1.2\(1\)_es65
cisco:unity_connectioncisco unity connectioneq1.2\(1\)sr2

CPE	Name	Operator	Version
cisco:unity_connection	cisco unity connection	le	7.1\(3b\)su1
cisco:unity_connection	cisco unity connection	eq	1.1
cisco:unity_connection	cisco unity connection	eq	1.1\(1\)
cisco:unity_connection	cisco unity connection	eq	1.1\(1\)_es1
cisco:unity_connection	cisco unity connection	eq	1.1\(1\)_es12
cisco:unity_connection	cisco unity connection	eq	1.1\(1\)_sr1
cisco:unity_connection	cisco unity connection	eq	1.2
cisco:unity_connection	cisco unity connection	eq	1.2\(1\)
cisco:unity_connection	cisco unity connection	eq	1.2\(1\)_es65
cisco:unity_connection	cisco unity connection	eq	1.2\(1\)sr2