← Back

CVE-2016-1319

nvd nist
Published: Feb 9, 2016Modified: May 6, 2026

JSON object

Loading...
5.3
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploitability: 3.9 / Impact: 1.4
Source: NVD

Description

Cisco Unified Communications Manager (aka CallManager) 9.1(2.10000.28), 10.5(2.10000.5), 10.5(2.12901.1), and 11.0(1.10000.10); Unified Communications Manager IM & Presence Service 10.5(2); Unified Contact Center Express 11.0(1); and Unity Connection 10.5(2) store a cleartext encryption key, which allows local users to obtain sensitive information via unspecified vectors, aka Bug ID CSCuv85958.

Affected (4)

Show all products
Samsung: X14j Firmware · Sun: Opensolaris · Zyxel: Gs1900 10hp Firmware · Zzinc: Keymouse Firmware
Samsung
1 product
X14j Firmware
Sun
1 product
Opensolaris
Zyxel
1 product
Gs1900 10hp Firmware
Zzinc
1 product
Keymouse Firmware
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
X14j Firmware
Version t-ms14jakucb-1102.5
Configuration C
2 vulnerable
Vulnerable SoftwareAffected Versions
Opensolaris
Version snv_124
Gs1900 10hp Firmware
Before 2.50\(aazi.0\)c0
Configuration D
1 vulnerable
Vulnerable SoftwareAffected Versions
Keymouse Firmware
Version 3.08

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.