Unrated severityNVD Advisory· Published Aug 9, 2006· Updated Jun 16, 2026

CVE-2006-4032

Description

Unspecified vulnerability in Cisco IOS CallManager Express (CME) allows remote attackers to gain sensitive information (user names) from the Session Initiation Protocol (SIP) user directory via certain SIP messages, aka bug CSCse92417.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Cisco Systems, Inc./Callmanager Express2 versions
cpe:2.3:h:cisco:callmanager_express:3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:cisco:callmanager_express:3.0:*:*:*:*:*:*:*
- (no CPE)

Patches

Vulnerability mechanics

References

secunia.com/advisories/21335nvdVendor Advisory
www.cisco.com/warp/public/707/cisco-sr-20060802-sip.shtmlnvdVendor Advisory
securitytracker.com/idnvd
www.blackhat.com/html/bh-usa-06/bh-usa-06-speakers.htmlnvd
www.osvdb.org/27760nvd
www.securityfocus.com/bid/19309nvd
www.vupen.com/english/advisories/2006/3126nvd
exchange.xforce.ibmcloud.com/vulnerabilities/28185nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000