CVE-2014-7988
Cisco Unity Connection < 10.5 - Authenticated Exposure of Sensitive Information via Unified Messaging Service Log Files
Title source: llmDescription
The Unified Messaging Service (UMS) in Cisco Unity Connection 10.5 and earlier allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCur06493.
References (5)
Core 5
Core References
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=36340
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7988
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/62106
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031177
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/98493
Scores
EPSS
0.0164
EPSS Percentile
73.5%
Details
CWE
CWE-200
Status
published
Products (1)
cisco/unity_connection
< 10.5
Published
Nov 07, 2014
Tracked Since
Feb 18, 2026