← Back

CVE-2008-4542

nvd nist
Published: Oct 13, 2008Modified: Apr 23, 2026

JSON object

Loading...
3.5
Vector
AV:N/AC:M/Au:S/C:N/I:P/A:N
Exploitability: 6.8 / Impact: 2.9
Source: NVD

Description

Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162, 5.x before 5.0(1)ES56, and 7.x before 7.0(2)ES8 allows remote authenticated administrators to inject arbitrary web script or HTML by entering it in the database (aka data store).

Affected (14)

Products: Cisco: Unity
1 product
Unity
Configuration A
14 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Up to 4.2\(1\)
Up to 5.0\(1\)
Up to 7.0\(2\)
Version 4.0
Version 4.0(1)
Version 4.0(2)
Version 4.0(3)
Version 4.0(3) sr2
Version 4.0(4)
Version 4.0(4) sr1
Version 4.0(5)
Version 4.1(1)
Version 5.0
Version 7.0

References (14)

Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.