The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified prompt, aka Bug ID CSCum05340.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0724 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=32825 | Vendor Advisory |
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0724 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=32825 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:02
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0724 - Vendor Advisory | |
References | () http://tools.cisco.com/security/center/viewAlert.x?alertId=32825 - Vendor Advisory |
Information
Published : 2014-02-13 05:24
Updated : 2024-11-21 02:02
NVD link : CVE-2014-0724
Mitre link : CVE-2014-0724
CVE.ORG link : CVE-2014-0724
JSON object : View
Products Affected
cisco
- unified_communications_manager
CWE
CWE-20
Improper Input Validation