all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Cisco Unified CM SQL Injection Flaw Let Attackers Execute Crafted SQL Queries

Add to bookmarks
Jan. 23, 2023, 7:59 a.m. | Guru Baran

GBHackers On Security gbhackers.com

Cisco released fixes for Unified Communications Manager (CM) and Unified Communications Manager Session Management Edition to address high-severity SQL injection vulnerability. “An attacker could exploit this vulnerability by authenticating to the application as a low-privileged user and sending crafted SQL queries to an affected system”, Cisco reports. “A successful exploit could allow the attacker to […]


The post <strong>Cisco Unified CM SQL Injection Flaw Let Attackers Execute Crafted SQL Queries</strong> appeared first on GBHackers - Latest Cyber Security News | …

address application attackers cisco communications exploit fixes flaw high injection low management manager privileged privileged user reports session severity sql sql injection system unified communications unified communications manager vulnerability

Visit resource

More from gbhackers.com / GBHackers On Security

PoC Exploit Released For Critical Oracle VirtualBox Vulnerability 6 hours ago | gbhackers.com
computer security critical critical vulnerability cve +17
Tracing the Steps of Cyber Intruders: The Path of Lateral Movement 6 hours ago | gbhackers.com
attacks bad bad actors breach +21
U.S. to Impose Visa Restrictions on 13 Individuals Involved in Commercial Spyware Operations 7 hours ago | gbhackers.com
address commercial commercial spyware cyber security +19
Volkswagen Group’s Systems Hacked: 19,000+ Documents Stolen 10 hours ago | gbhackers.com
automotive breach chinese chinese hackers +23
Critical Apache HugeGraph Flaw Let Attackers Execute Remote Code 11 hours ago | gbhackers.com
apache arbitrary code attackers code +23
Hacker Offers Upto $300 To Mobile Networks Staff For Illegal SIM Swaps 11 hours ago | gbhackers.com
2fa aim attackers authentication +31
Critical Flaw with Popular API Portal Let Attackers Launch SSRF Attacks 12 hours ago | gbhackers.com
advanced api applications attackers +23
Europol calls for Tech Giants to Get Lawful Access To end-to-end Encryption 12 hours ago | gbhackers.com
access call communications cyber security +22
Malicious PyPI Package Attacking Discord Users To Steal Credentials 1 day, 5 hours ago | gbhackers.com
code credentials cyber security cybersecurity +23

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer II, Offensive Security Penetration Testing

@ Amazon.com | US, TX, Virtual Location - Texas
View on infosec-jobs.com

Cybersecurity Specialist (Security Engineering)

@ Triton AI Pte Ltd | Singapore, Singapore, Singapore
View on infosec-jobs.com

Information Systems Security Officer (ISSO)

@ ARA | Arlington, Virginia, United States
View on infosec-jobs.com

Lead - IT Risk compliance & Info Security

@ First Advantage | Bengaluru-560042, Karnataka
View on infosec-jobs.com

Embedded VSOC Analyst

@ Sibylline Ltd | Australia, Australia
View on infosec-jobs.com
View more jobs