CVE-2006-2166

CVE Database · CVE-2006-2166

CVE-2006-2166

· N/AModified

CVSS v3.1

N/A

EPSS

1.62%

Published

May 4, 2006

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Unspecified vulnerability in the HTTP management interface in Cisco Unity Express (CUE) 2.2(2) and earlier, when running on any CUE Advanced Integration Module (AIM) or Network Module (NM), allows remote authenticated attackers to reset the password for any user with an expired password.

Affected Products (4)

cisco · unity_express_softwarevulnerable

cisco · unity_expressvulnerable

References (14)

http://secunia.com/advisories/19881

PatchVendor Advisory

http://securitytracker.com/id?1016015

http://www.cisco.com/warp/public/707/cisco-sa-20060501-cue.shtml

Vendor Advisory

http://www.osvdb.org/25165

http://www.securityfocus.com/bid/17775

http://www.vupen.com/english/advisories/2006/1613

https://exchange.xforce.ibmcloud.com/vulnerabilities/26165

http://secunia.com/advisories/19881

PatchVendor Advisory

http://securitytracker.com/id?1016015

KEV Catalog EPSS Scores Vendors All CVEs