CVE-2016-6464

CVE Database · CVE-2016-6464

CVE-2016-6464

· N/AModified

CVSS v3.1

N/A

EPSS

3.12%

Published

Dec 13, 2016

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the web management interface of the Cisco Unified Communications Manager IM and Presence Service could allow an unauthenticated, remote attacker to view information on web pages that should be restricted. More Information: CSCva49629. Known Affected Releases: 11.5(1). Known Fixed Releases: 11.5(1.12000.2) 12.0(0.98000.181).

Weaknesses (CWE)

CWE-200

Affected Products (4)

cisco · unified_communications_manager_im_and_presence_servicevulnerable

References (6)

http://www.securityfocus.com/bid/94802

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037412

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-ucm

Vendor Advisory

http://www.securityfocus.com/bid/94802

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037412

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-ucm

KEV Catalog EPSS Scores Vendors All CVEs