Unrated severityNVD Advisory· Published Oct 8, 2008· Updated Apr 23, 2026
CVE-2008-3814
CVE-2008-3814
Description
Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to bypass authentication and read or modify system configuration parameters by going to a specific link more than once.
Affected products
14cpe:2.3:a:cisco:unity:7.0\(2\):*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:cisco:unity:7.0\(2\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(2\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(3\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(3\):sr1:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(4\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(4\):sr1:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.0\(5\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.1\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:4.2\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:5.0\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity:7.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.cisco.com/en/US/products/products_security_advisory09186a0080a0d85f.shtmlnvdPatchVendor Advisory
- www.cisco.com/en/US/products/products_security_response09186a0080a0d861.htmlnvdPatchVendor Advisory
- secunia.com/advisories/32187nvdVendor Advisory
- www.vupen.com/english/advisories/2008/2771nvdVendor Advisory
- www.securityfocus.com/bid/31638nvd
- www.securityfocus.com/bid/31642nvd
- www.securitytracker.com/idnvd
- www.voipshield.com/research-details.phpnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45741nvd
News mentions
0No linked articles in our index yet.