CVE-2013-5528

NUCLEI

Cisco Unified Communications Manager - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in the Tomcat administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to read arbitrary files via directory traversal sequences in an unspecified input string, aka Bug ID CSCui78815.

Exploits (1)

exploitdb WORKING POC

by justpentest · textwebappshardware

https://www.exploit-db.com/exploits/40887

View Code ZIP pw:eip

Nuclei Templates (1)

Cisco Unified Communications Manager 7/8/9 - Directory Traversal

MEDIUMby daffainfo

References (5)

[Broken Link] http://osvdb.org/98336

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/140071/Cisco-Unified-Communications-Manager-7-8-9-Directory-Traversal.html

[Vendor Advisory] http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5528

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/62960

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/40887/

Scores

EPSS 0.6150

EPSS Percentile 98.3%

Details

CWE

CWE-22

Status published

Products (1)

cisco/unified_communications_manager

Published Oct 11, 2013

Tracked Since Feb 18, 2026