← Back

CVE-2008-4545

nvd nist
Published: Oct 13, 2008Modified: Apr 23, 2026

JSON object

Loading...
4.0
Vector
AV:N/AC:L/Au:S/C:P/I:N/A:N
Exploitability: 8.0 / Impact: 2.9
Source: NVD

Description

Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8 uses weak permissions for the D:\CommServer\Reports directory, which allows remote authenticated users to obtain sensitive information by reading files in this directory.

Affected (14)

Products: Cisco: Unity
1 product
Unity
Configuration A
14 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Up to 4.2\(1\)
Up to 5.0\(1\)
Up to 7.0\(2\)
Version 4.0
Version 4.0(1)
Version 4.0(2)
Version 4.0(3)
Version 4.0(3) sr2
Version 4.0(4)
Version 4.0(4) sr1
Version 4.0(5)
Version 4.1(1)
Version 5.0
Version 7.0

Related CWEs

References (14)

Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.