CVE-2016-1319
NONE EPSS 53.0%
Published Feb 9, 201610y ago · Modified Jun 17, 20262w ago
Published Feb 9, 2016 10y ago
Last Modified Jun 17, 2026 2w ago
Description
Cisco Unified Communications Manager (aka CallManager) 9.1(2.10000.28), 10.5(2.10000.5), 10.5(2.12901.1), and 11.0(1.10000.10); Unified Communications Manager IM & Presence Service 10.5(2); Unified Contact Center Express 11.0(1); and Unity Connection 10.5(2) store a cleartext encryption key, which allows local users to obtain sensitive information via unspecified vectors, aka Bug ID CSCuv85958.
Threat Intelligence
EPSS Exploit Probability
53.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure
Affected Products 6
References 4
- tools.cisco.com http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160208-ucm
- securitytracker.com http://www.securitytracker.com/id/1034958
- securitytracker.com http://www.securitytracker.com/id/1034959
- securitytracker.com http://www.securitytracker.com/id/1034960
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.