2.1
CVE-2006-2166
- EPSS 1.62%
- Veröffentlicht 04.05.2006 12:38:00
- Zuletzt bearbeitet 16.06.2026 22:24:28
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the HTTP management interface in Cisco Unity Express (CUE) 2.2(2) and earlier, when running on any CUE Advanced Integration Module (AIM) or Network Module (NM), allows remote authenticated attackers to reset the password for any user with an expired password.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Unity Express Software Version1.1.1
Cisco ≫ Unity Express Software Version2.1.1
Cisco ≫ Unity Express Software Version2.2.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.62% | 0.729 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:N/AC:H/Au:S/C:N/I:P/A:N
|
http://secunia.com/advisories/19881
http://securitytracker.com/id?1016015
http://www.cisco.com/warp/public/707/cisco-sa-20060501-cue.shtml
http://www.osvdb.org/25165
http://www.securityfocus.com/bid/17775
http://www.vupen.com/english/advisories/2006/1613
https://exchange.xforce.ibmcloud.com/vulnerabilities/26165