Unrated severityNVD Advisory· Published Oct 8, 2008· Updated Jun 16, 2026
CVE-2008-3814
CVE-2008-3814
Description
Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to bypass authentication and read or modify system configuration parameters by going to a specific link more than once.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:a:cisco:unity:4.0:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:a:cisco:unity:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(2\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(3\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(3\):sr1:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(4\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(4\):sr1:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(5\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.1\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.2\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:5.0\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:7.0\(2\):*:*:*:*:*:*:*
- (no CPE)range: <4.2(1)ES161, <5.0(1)ES53, <7.0(2)ES8
Patches
Vulnerability mechanics
References
9- www.cisco.com/en/US/products/products_security_advisory09186a0080a0d85f.shtmlnvdPatchVendor Advisory
- www.cisco.com/en/US/products/products_security_response09186a0080a0d861.htmlnvdPatchVendor Advisory
- secunia.com/advisories/32187nvdVendor Advisory
- www.vupen.com/english/advisories/2008/2771nvdVendor Advisory
- www.securityfocus.com/bid/31638nvd
- www.securityfocus.com/bid/31642nvd
- www.securitytracker.com/idnvd
- www.voipshield.com/research-details.phpnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45741nvd
News mentions
0No linked articles in our index yet.