Unrated severityNVD Advisory· Published Jun 26, 2008· Updated Jun 16, 2026
CVE-2008-2062
CVE-2008-2062
Description
The Real-Time Information Server (RIS) Data Collector service in Cisco Unified Communications Manager (CUCM) before 4.2(3)SR4, and 4.3 before 4.3(2)SR1, allows remote attackers to bypass authentication, and obtain cluster configuration information and statistics, via a direct TCP connection to the service port, aka Bug ID CSCsq35151.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:*range: >=4.2,<4.2\(3\)sr4
- (no CPE)range: <4.2(3)SR4, <4.3(2)SR1
- Range: <4.2(3)SR4, <4.3(2)SR1
Patches
Vulnerability mechanics
References
6- www.cisco.com/en/US/products/products_security_advisory09186a00809b9011.shtmlnvdPatchVendor Advisory
- secunia.com/advisories/30848nvdThird Party Advisory
- www.securityfocus.com/bid/29935nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/43355nvdThird Party AdvisoryVDB Entry
- www.vupen.com/english/advisories/2008/1933/referencesnvdPermissions Required
News mentions
0No linked articles in our index yet.