The certificate-import feature in the Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum95461.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Unified_communications_manager | Cisco | * | 10.0(1) (including) |
| Unified_communications_manager | Cisco | 3.3(5) (including) | 3.3(5) (including) |
| Unified_communications_manager | Cisco | 3.3(5)sr1 (including) | 3.3(5)sr1 (including) |
| Unified_communications_manager | Cisco | 3.3(5)sr2a (including) | 3.3(5)sr2a (including) |
| Unified_communications_manager | Cisco | 4.1(3) (including) | 4.1(3) (including) |
| Unified_communications_manager | Cisco | 4.1(3)sr1 (including) | 4.1(3)sr1 (including) |
| Unified_communications_manager | Cisco | 4.1(3)sr2 (including) | 4.1(3)sr2 (including) |
| Unified_communications_manager | Cisco | 4.1(3)sr3 (including) | 4.1(3)sr3 (including) |
| Unified_communications_manager | Cisco | 4.1(3)sr4 (including) | 4.1(3)sr4 (including) |
| Unified_communications_manager | Cisco | 4.2 (including) | 4.2 (including) |
| Unified_communications_manager | Cisco | 4.2.1 (including) | 4.2.1 (including) |
| Unified_communications_manager | Cisco | 4.2.2 (including) | 4.2.2 (including) |
| Unified_communications_manager | Cisco | 4.2.3 (including) | 4.2.3 (including) |
| Unified_communications_manager | Cisco | 4.2.3sr1 (including) | 4.2.3sr1 (including) |
| Unified_communications_manager | Cisco | 4.2.3sr2 (including) | 4.2.3sr2 (including) |
| Unified_communications_manager | Cisco | 4.2.3sr2b (including) | 4.2.3sr2b (including) |
| Unified_communications_manager | Cisco | 4.3 (including) | 4.3 (including) |
| Unified_communications_manager | Cisco | 10.0 (including) | 10.0 (including) |