Vulnerabilities > Cisco > Unified Communications Manager IM AND Presence Service > 12.5

DATE	CVE	VULNERABILITY TITLE	RISK
2021-01-20	CVE-2021-1282	SQL Injection vulnerability in Cisco products Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on an affected system. network low complexity cisco CWE-89	4.9

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.