Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-1643
HistoryAug 29, 2011 - 3:55 p.m.

CVE-2011-1643

2011-08-2915:55:01
CWE-200
[email protected]
web.nvd.nist.gov
7

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

0.003

Percentile

69.0%

JSON

Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x, 7.x before 7.1(5b)su4, 8.0, and 8.5 before 8.5(1)su2 and Cisco Unified Presence Server 6.x, 7.x, 8.0, and 8.5 before 8.5xnr allow remote attackers to read database data by connecting to a query interface through an SSL session, aka Bug IDs CSCti81574, CSCto63060, CSCto72183, and CSCto73833.

Affected configurations

NVD
Node
ciscounified_communications_managerMatch6.0
OR
ciscounified_communications_managerMatch6.1\(1\)
OR
ciscounified_communications_managerMatch6.1\(1a\)
OR
ciscounified_communications_managerMatch6.1\(1b\)
OR
ciscounified_communications_managerMatch6.1\(2\)
OR
ciscounified_communications_managerMatch6.1\(2\)su1
OR
ciscounified_communications_managerMatch6.1\(2\)su1a
OR
ciscounified_communications_managerMatch6.1\(3\)
OR
ciscounified_communications_managerMatch6.1\(3a\)
OR
ciscounified_communications_managerMatch6.1\(3b\)
OR
ciscounified_communications_managerMatch6.1\(3b\)su1
OR
ciscounified_communications_managerMatch6.1\(4\)
OR
ciscounified_communications_managerMatch6.1\(4\)su1
OR
ciscounified_communications_managerMatch6.1\(4a\)
OR
ciscounified_communications_managerMatch6.1\(4a\)su2
OR
ciscounified_communications_managerMatch6.1\(5\)
OR
ciscounified_communications_managerMatch6.1\(5\)su1
OR
ciscounified_communications_managerMatch6.1\(5\)su2
OR
ciscounified_communications_managerMatch7.0\(1\)su1
OR
ciscounified_communications_managerMatch7.0\(1\)su1a
OR
ciscounified_communications_managerMatch7.0\(2\)
OR
ciscounified_communications_managerMatch7.0\(2a\)
OR
ciscounified_communications_managerMatch7.0\(2a\)su1
OR
ciscounified_communications_managerMatch7.0\(2a\)su2
OR
ciscounified_communications_managerMatch7.1\(2a\)
OR
ciscounified_communications_managerMatch7.1\(2a\)su1
OR
ciscounified_communications_managerMatch7.1\(2b\)
OR
ciscounified_communications_managerMatch7.1\(2b\)su1
OR
ciscounified_communications_managerMatch7.1\(3\)
OR
ciscounified_communications_managerMatch7.1\(3a\)
OR
ciscounified_communications_managerMatch7.1\(3a\)su1
OR
ciscounified_communications_managerMatch7.1\(3a\)su1a
OR
ciscounified_communications_managerMatch7.1\(3b\)
OR
ciscounified_communications_managerMatch7.1\(3b\)su1
OR
ciscounified_communications_managerMatch7.1\(3b\)su2
OR
ciscounified_communications_managerMatch7.1\(5\)
OR
ciscounified_communications_managerMatch7.1\(5\)su1
OR
ciscounified_communications_managerMatch7.1\(5\)su1a
OR
ciscounified_communications_managerMatch7.1\(5a\)
OR
ciscounified_communications_managerMatch7.1\(5b\)
OR
ciscounified_communications_managerMatch7.1\(5b\)su1
OR
ciscounified_communications_managerMatch7.1\(5b\)su1a
OR
ciscounified_communications_managerMatch7.1\(5b\)su2
OR
ciscounified_communications_managerMatch7.1\(5b\)su3
OR
ciscounified_communications_managerMatch8.0
OR
ciscounified_communications_managerMatch8.5
OR
ciscounified_communications_managerMatch8.5\(1\)
OR
ciscounified_communications_managerMatch8.5\(1\)su1
Node
ciscounified_presence_serverMatch6.0\(1\)
OR
ciscounified_presence_serverMatch6.0\(2\)
OR
ciscounified_presence_serverMatch6.0\(3\)
OR
ciscounified_presence_serverMatch6.0\(4\)
OR
ciscounified_presence_serverMatch6.0\(5\)
OR
ciscounified_presence_serverMatch6.0\(6\)
OR
ciscounified_presence_serverMatch6.0\(7\)
OR
ciscounified_presence_serverMatch7.0\(1\)
OR
ciscounified_presence_serverMatch7.0\(2\)
OR
ciscounified_presence_serverMatch7.0\(3\)
OR
ciscounified_presence_serverMatch7.0\(4\)
OR
ciscounified_presence_serverMatch7.0\(5\)
OR
ciscounified_presence_serverMatch7.0\(6\)
OR
ciscounified_presence_serverMatch7.0\(7\)
OR
ciscounified_presence_serverMatch7.0\(8\)
OR
ciscounified_presence_serverMatch7.0\(9\)
OR
ciscounified_presence_serverMatch8.0
OR
ciscounified_presence_serverMatch8.5
OR
ciscounified_presence_serverMatch8.5\(1\)
OR
ciscounified_presence_serverMatch8.5\(2\)
OR
ciscounified_presence_serverMatch8.5\(3\)

Related

securityvulns 2
cve 1
prion 1
cvelist 1
securityvulns
securityvulns
Cisco Security Advisory: Open Query Interface in Cisco Unified Communications Manager and Cisco Unified Presence Server
2011-08-30 00:00:00
Cisco Unified Communications Manager / Cisco Unified Presence Server information leakage
2011-08-30 00:00:00
cve
cve
CVE-2011-1643
2022-10-03 16:15:08
prion
prion
Code injection
2011-08-29 15:55:00
cvelist
cvelist
CVE-2011-1643
2022-10-03 16:15:08

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

0.003

Percentile

69.0%

JSON
Related for NVD:CVE-2011-1643
securityvulns2cve1prion1cvelist1