CVE-2014-3345

The web framework in Cisco Transport Gateway for Smart Call Home (aka TG-SCH or Transport Gateway Installation Software) 4.0 does not properly check authorization for administrative web pages, which allows remote attackers to modify the product via a crafted URL, aka Bug ID CSCuq31503.
Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:transport_gateway_installation_software:4.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-08-28 23:55

Updated : 2024-02-28 12:20


NVD link : CVE-2014-3345

Mitre link : CVE-2014-3345

CVE.ORG link : CVE-2014-3345


JSON object : View

Products Affected

cisco

  • transport_gateway_installation_software
CWE
CWE-264

Permissions, Privileges, and Access Controls