CVE-2013-6689
Cisco Unified Communications Manager < 9.1(1) - Arbitrary File Read/Modify/Create via CLI
Title source: llmDescription
Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier allows local users to bypass file permissions, and read, modify, or create arbitrary files, via an "overload" of the command-line utility, aka Bug ID CSCui58229.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6689
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=31758
Scores
EPSS
0.0035
EPSS Percentile
27.4%
Details
CWE
CWE-20
Status
published
Products (50)
cisco/unified_communications_manager
3.3\(5\)
cisco/unified_communications_manager
3.3\(5\)sr1
cisco/unified_communications_manager
3.3\(5\)sr2a
cisco/unified_communications_manager
4.1\(3\)
cisco/unified_communications_manager
4.1\(3\)sr1
cisco/unified_communications_manager
4.1\(3\)sr2
cisco/unified_communications_manager
4.1\(3\)sr3
cisco/unified_communications_manager
4.1\(3\)sr4
cisco/unified_communications_manager
4.2
cisco/unified_communications_manager
4.2.1
... and 40 more
Published
Nov 18, 2013
Tracked Since
Feb 18, 2026