VYPR
Unrated severityNVD Advisory· Published Jan 22, 2006· Updated Jun 16, 2026

CVE-2006-0367

CVE-2006-0367

Description

Unspecified vulnerability in Cisco CallManager 3.2 and earlier, 3.3 before 3.3(5)SR1, 4.0 before 4.0(2a)SR2c, and 4.1 before 4.1(3)SR2 allows remote authenticated users with read-only administrative privileges to obtain full administrative privileges via a "crafted URL on the CCMAdmin web page."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19
  • cpe:2.3:h:cisco:call_manager:1.0:*:*:*:*:*:*:*+ 18 more
    • cpe:2.3:h:cisco:call_manager:1.0:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:2.0:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.0:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.1:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.1\(2\):*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.1\(3a\):*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.2:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.3:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.3\(3\):*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.3\(3\)es61:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.3\(4\)es25:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:3.3\(5\):*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:4.0:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:4.0\(2a\)es40:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:4.0\(2a\)sr2b:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:4.1\(2\)es33:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:4.1\(3\)es07:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:call_manager:4.1\(3\)sr1:*:*:*:*:*:*:*
    • (no CPE)range: <=3.2, 3.3 < 3.3(5)SR1, 4.0 < 4.0(2a)SR2c, 4.1 < 4.1(3)SR2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.