CVE-2007-5539
Published on: 10/17/2007 12:00:00 AM UTC
Last Modified on: 03/23/2021 11:25:37 PM UTC
Certain versions of Unified Contact Center Enterprise from Cisco contain the following vulnerability:
Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise (ICME), Unified ICM Hosted (ICMH), Unified Contact Center Enterprise (UCCE), Unified Contact Center Hosted (UCCH), and System Unified Contact Center Enterprise (SUCCE) 7.1(5) allows remote authenticated users to gain privileges, and read reports or change the SUCCE configuration, via certain web interfaces, aka CSCsj55686.
- CVE-2007-5539 has been assigned by
[email protected] to track the vulnerability
CVSS2 Score: 9 - HIGH
| Access Vector ⓘ |
Access Complexity |
Authentication |
|---|---|---|
| NETWORK | LOW | SINGLE |
| Confidentiality Impact |
Integrity Impact |
Availability Impact |
| COMPLETE | COMPLETE | COMPLETE |
CVE References
| Description | Tags ⓘ | Link |
|---|---|---|
| Cisco Unified Communications Management Applications Privilege Escalation Vulneraiblity | cve.report (archive) text/html |
BID 26106 |
| Cisco Products Unspecified Unauthorized Access Vulnerability - Advisories - Secunia | Vendor Advisory web.archive.org text/html |
SECUNIA 27214 |
| Cisco Unified Contact Center Grants Access to Certain Users to Read Web View Report Information - SecurityTracker | www.securitytracker.com text/html |
SECTRACK 1018829 |
| IBM X-Force Exchange | exchange.xforce.ibmcloud.com text/html |
XF cisco-webview-unauthorized-access(37248) |
| Cisco Security Advisory: Cisco Unified Communications Web-based Management Vulnerability - Cisco Systems | www.cisco.com text/html |
CISCO 20071017 Cisco Unified Communications Web-based Management Vulnerability |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | Vendor Advisory www.vupen.com text/html |
VUPEN ADV-2007-3533 |
| No Description Provided | osvdb.org Inactive LinkNot Archived |
OSVDB 37938 |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Cisco | Unified Contact Center Enterprise | All | All | All | All |
| Application | Cisco | Unified Contact Center Enterprise | 7.1(5) | All | All | All |
| Application | Cisco | Unified Contact Center Enterprise | 7.1\(5\) | All | All | All |
| Application | Cisco | Unified Contact Center Enterprise | All | All | All | All |
| Application | Cisco | Unified Contact Center Enterprise | 7.1\(5\) | All | All | All |
| Application | Cisco | Unified Contact Center Hosted | All | All | All | All |
| Application | Cisco | Unified Contact Center Hosted | All | All | All | All |
| Application | Cisco | Unified Icm Hosted | All | All | All | All |
| Application | Cisco | Unified Icm Hosted | All | All | All | All |
| Application | Cisco | Unified Intelligent Contact Management Enterprise | All | All | All | All |
| Application | Cisco | Unified Intelligent Contact Management Enterprise | All | All | All | All |
- cpe:2.3:a:cisco:unified_contact_center_enterprise:*:*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_contact_center_enterprise:7.1(5):*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_contact_center_enterprise:7.1\(5\):*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_contact_center_enterprise:*:*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_contact_center_enterprise:7.1\(5\):*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_contact_center_hosted:*:*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_contact_center_hosted:*:*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_icm_hosted:*:*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_icm_hosted:*:*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_intelligent_contact_management_enterprise:*:*:*:*:*:*:*:*:
- cpe:2.3:a:cisco:unified_intelligent_contact_management_enterprise:*:*:*:*:*:*:*:*:
No vendor comments have been submitted for this CVE