Lucene search
HistoryJun 26, 2008 - 5:41 p.m.
CVE-2008-2730
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.005
Percentile
77.3%
The Real-Time Information Server (RIS) Data Collector service in Cisco Unified Communications Manager (CUCM) 5.x before 5.1(3) and 6.x before 6.1(1) allows remote attackers to bypass authentication, and obtain cluster configuration information and statistics, via a direct TCP connection to the service port, aka Bug ID CSCsj90843.
Affected configurations
Node
ciscounified_communications_managerMatch5.1
ORciscounified_communications_managerMatch6.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_communications_manager | 5.1 | cpe:2.3:a:cisco:unified_communications_manager:5.1:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 6.1 | cpe:2.3:a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2008-2730
2008-06-26 17:41:00
prion
prion
Authentication flaw
2008-06-26 17:41:00
cvelist
cvelist
CVE-2008-2730
2008-06-26 17:00:00
seebug
seebug
Cisco Unified Communications Manager RIS数据收集器服务绕过认证漏洞
2008-06-28 00:00:00
cisco
cisco
securityvulns
securityvulns
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.005
Percentile
77.3%
Related for NVD:CVE-2008-2730