Home

CVE-2021-1226

Description

A vulnerability in the audit logging component of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, Cisco Unity Connection, Cisco Emergency Responder, and Cisco Prime License Manager could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. The vulnerability is due to the storage of certain unencrypted credentials. An attacker could exploit this vulnerability by accessing the audit logs on an affected system and obtaining credentials that they may not normally have access to. A successful exploit could allow the attacker to use those credentials to discover and manage network devices.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.219

Associated Vulnerability

VulnerabilityOS Platform
Cisco Unified Communications Products Information Disclosure Vulnerability For Cisco Emergency ResponderNCM
Cisco Unified Communications Products Information Disclosure Vulnerability For Cisco Unity ConnectionNCM
Cisco Unified Communications Products Information Disclosure Vulnerability For Cisco Unified Communications Manager (CallManager)NCM
Cisco Unified Communications Products Information Disclosure Vulnerability For Cisco Unified Communications Manager IM & Presence ServiceNCM
Insertion of Sensitive Information into Log File Vulnerability (CVE-2021-1226)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1706049Security Update for Cisco Emergency Responder 12.0(0.98000.50)
PATCH-1706048Security Update for Cisco Unity Connection 12.0(0.97000.184)
PATCH-1706016Security Update for Cisco Unified Communications Manager (CallManager) CUP.11.5(1.12900.25)
PATCH-1706022Security Update for Cisco Unified Communications Manager IM & Presence Service CUP.11.5(1.12900.25)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234