CVE-2011-0960 in Unified Operations Managerinfo

Summary

Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to execute arbitrary SQL commands via (1) the CCMs parameter to iptm/PRTestCreation.do or (2) the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug ID CSCtn61716.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

02/10/2011

Disclosure

05/20/2011

Moderation

VulDB entry created

Entries

1: VDB-57476

CPE

ready

CWE

CWE-89 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.00297

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0960
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0960
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0960/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!