{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-26T17:17:58.061","vulnerabilities":[{"cve":{"id":"CVE-2008-4542","sourceIdentifier":"cve@mitre.org","published":"2008-10-13T20:00:02.340","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162, 5.x before 5.0(1)ES56, and 7.x before 7.0(2)ES8 allows remote authenticated administrators to inject arbitrary web script or HTML by entering it in the database (aka data store)."},{"lang":"es","value":"Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en Cisco Unity 4.x anteriores a v4.2(1)ES162, 5.x anteriores a v5.0(1)ES56, y 7.x anteriores a v7.0(2)ES8, que permite a los administradores autenticados remotos inyectar una secuencia de comandos web o HTML arbitrarios metiéndolos en la base de datos (también conocida como almacén de datos)."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:*:*:*:*:*:*:*:*","versionEndIncluding":"4.2\\(1\\)","matchCriteriaId":"E0008B2C-C3EF-4C4F-AE0F-BFC2C373D68B"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:*:*:*:*:*:*:*:*","versionEndIncluding":"5.0\\(1\\)","matchCriteriaId":"FDD69DB2-FD94-403D-BD18-A25FD470C817"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:*:*:*:*:*:*:*:*","versionEndIncluding":"7.0\\(2\\)","matchCriteriaId":"049041BD-EBC5-4971-BD51-DD63EFB2F430"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0:*:*:*:*:*:*:*","matchCriteriaId":"E7069DF8-3006-4651-816A-855C980256FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0\\(1\\):*:*:*:*:*:*:*","matchCriteriaId":"CDE9975D-17B0-4EC8-8278-A715F4BF14F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0\\(2\\):*:*:*:*:*:*:*","matchCriteriaId":"9555A7EC-C0B6-4F48-99BE-BCE51446CF47"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0\\(3\\):*:*:*:*:*:*:*","matchCriteriaId":"16F3E72C-FF4B-425E-A8FB-C1C4BEDDB019"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0\\(3\\):sr2:*:*:*:*:*:*","matchCriteriaId":"6871C23B-9B4F-4621-A1C9-55D040558610"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0\\(4\\):*:*:*:*:*:*:*","matchCriteriaId":"A164F687-98DB-409D-A9C4-D04ECF6DD53F"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0\\(4\\):sr1:*:*:*:*:*:*","matchCriteriaId":"255CAB12-EE1D-4DC3-B854-E0D645F4C9B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.0\\(5\\):*:*:*:*:*:*:*","matchCriteriaId":"0A9BA9FD-99EC-4571-ACE8-2EFD13EFEBC5"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:4.1\\(1\\):*:*:*:*:*:*:*","matchCriteriaId":"B746D68B-C6A4-494C-9302-F4652E1E2A13"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:5.0:*:*:*:*:*:*:*","matchCriteriaId":"20DAD5D8-6882-48FE-AE7A-9440F47F6C2A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:unity:7.0:*:*:*:*:*:*:*","matchCriteriaId":"5EED32D3-A1C5-430C-8488-4D221196CB76"}]}]}],"references":[{"url":"http://secunia.com/advisories/32207","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://securitytracker.com/id?1021012","source":"cve@mitre.org"},{"url":"http://www.cisco.com/en/US/products/products_security_response09186a0080a0d861.html","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/31642","source":"cve@mitre.org"},{"url":"http://www.voipshield.com/research-details.php?id=127","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2008/2771","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45744","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/32207","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://securitytracker.com/id?1021012","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.cisco.com/en/US/products/products_security_response09186a0080a0d861.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/31642","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.voipshield.com/research-details.php?id=127","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/2771","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45744","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}