Arbitrary File Modification Vulnerability in Cisco Unified Reporting Upload Tool

Arbitrary File Modification Vulnerability in Cisco Unified Reporting Upload Tool

CVE-2016-9210 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

A vulnerability in the Cisco Unified Reporting upload tool accessed via the Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to modify arbitrary files on the file system. More Information: CSCvb61698. Known Affected Releases: 11.5(1.11007.2). Known Fixed Releases: 12.0(0.98000.168) 12.0(0.98000.178) 12.0(0.98000.399) 12.0(0.98000.510) 12.0(0.98000.536) 12.0(0.98500.7).

Learn more about our Cis Benchmark Audit For Cisco.