NVD

Id
29591  
Name
CVE-2014-0728  
Description
SQL injection vulnerability in the Java database interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum05313.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2014-02-13  
Modified Date
2015-08-05  
Seq
2014-0728  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
156679 29591 CVE-2014-0728 20140211 Cisco Unified Communications Manager Java Interface SQL Injection Vulnerability  View
156680 29591 CVE-2014-0728 http://tools.cisco.com/security/center/viewAlert.x?alertId=32834  View
156681 29591 CVE-2014-0728 65499  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
12527 JVNDB-2014-001402 Cisco Unified Communications Manager の Java データベースインターフェースにおける SQL インジェクションの脆弱性 Cisco Unified Communications Manager (UCM) の Java データベースインターフェースには、SQL インジェクションの脆弱性が存在します。 CVE-2014-0728 68129 CVE-2014-0728 29591 7.5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001402.html 2014-02-12 2014-02-14 View