CVE-2015-0753
Cisco Unified Email and Web Interaction Manager 9.0(2) - SQL Injection
Title source: llmDescription
SQL injection vulnerability in Cisco Unified Email Interaction Manager (EIM) and Unified Web Interaction Manager (WIM) 9.0(2) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuu30028.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1032422
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/viewAlert.x?alertId=39013
Scores
EPSS
0.0185
EPSS Percentile
76.5%
Details
CWE
CWE-20
Status
published
Products (1)
cisco/unified_web_and_e-mail_interaction_manager
9.0\(2\)
Published
May 29, 2015
Tracked Since
Feb 18, 2026