Medium severity6.5NVD Advisory· Published Apr 19, 2018· Updated Jun 17, 2026
CVE-2018-0267
CVE-2018-0267
Description
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, local attacker to view sensitive data that should be restricted. This could include LDAP credentials. The vulnerability is due to insufficient protection of database tables over the web interface. An attacker could exploit this vulnerability by browsing to a specific URL. An exploit could allow the attacker to view sensitive information that should have been restricted. Cisco Bug IDs: CSCvf22116.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/103937nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040719nvdThird Party AdvisoryVDB Entry
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-ucm1nvdVendor Advisory
News mentions
0No linked articles in our index yet.