Unrated severityNVD Advisory· Published Sep 20, 2015· Updated Jun 17, 2026
CVE-2015-6299
CVE-2015-6299
Description
SQL injection vulnerability in the web interface in Cisco Unity Connection 9.1(1.2) and earlier allows remote authenticated users to execute arbitrary SQL commands via a crafted POST request, aka Bug ID CSCuv63824.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:cisco:unity_connection:9.1\(1\):*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:cisco:unity_connection:9.1\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unity_connection:9.1\(2\):*:*:*:*:*:*:*
- (no CPE)range: <=9.1(1.2)
Patches
Vulnerability mechanics
References
2- tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
- www.securitytracker.com/id/1033622nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.