CVE-2015-0702

CVE Database · CVE-2015-0702

CVE-2015-0702

· N/AModified

CVSS v3.1

N/A

EPSS

2.98%

Published

Apr 20, 2015

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Unrestricted file upload vulnerability in the Custom Prompts upload implementation in Cisco Unified MeetingPlace 8.6(1.9) allows remote authenticated users to execute arbitrary code by using the languageShortName parameter to upload a file that provides shell access, aka Bug ID CSCus95712.

Weaknesses (CWE)

CWE-20CWE-434

Affected Products (1)

cisco · unified_meetingplacevulnerable

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=38455

Vendor Advisory

http://www.securitytracker.com/id/1032165

Third Party AdvisoryVDB Entry

http://tools.cisco.com/security/center/viewAlert.x?alertId=38455

Vendor Advisory

http://www.securitytracker.com/id/1032165

Third Party AdvisoryVDB Entry

KEV Catalog EPSS Scores Vendors All CVEs