CVE-2014-7988

Cisco Unity Connection < 10.5 - Authenticated Exposure of Sensitive Information via Unified Messaging Service Log Files

Title source: llm
STIX 2.1

Description

The Unified Messaging Service (UMS) in Cisco Unity Connection 10.5 and earlier allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCur06493.

References (5)

Core 5
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62106
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031177
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/98493

Scores

EPSS 0.0164
EPSS Percentile 73.5%

Details

CWE
CWE-200
Status published
Products (1)
cisco/unity_connection < 10.5
Published Nov 07, 2014
Tracked Since Feb 18, 2026