Unrated severityNVD Advisory· Published May 4, 2006· Updated Jun 16, 2026
CVE-2006-2166
CVE-2006-2166
Description
Unspecified vulnerability in the HTTP management interface in Cisco Unity Express (CUE) 2.2(2) and earlier, when running on any CUE Advanced Integration Module (AIM) or Network Module (NM), allows remote authenticated attackers to reset the password for any user with an expired password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:cisco:unity_express_software:1.1.1:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:cisco:unity_express_software:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity_express_software:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity_express_software:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:unity_express:*:*:*:*:*:*:*:*
- (no CPE)range: <=2.2(2)
Patches
Vulnerability mechanics
References
7- secunia.com/advisories/19881nvdPatchVendor Advisory
- www.cisco.com/warp/public/707/cisco-sa-20060501-cue.shtmlnvdVendor Advisory
- securitytracker.com/idnvd
- www.osvdb.org/25165nvd
- www.securityfocus.com/bid/17775nvd
- www.vupen.com/english/advisories/2006/1613nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/26165nvd
News mentions
0No linked articles in our index yet.