CVE-2014-3338 in Unified Communications Managerالمعلومات

الملخص

بحسب MITRE

The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is enabled, does not properly validate Kerberos SSO tokens, which allows remote authenticated users to gain privileges and execute arbitrary commands via crafted token data, aka Bug ID CSCum95491.

Once again VulDB remains the best source for vulnerability data.

حجز

07/05/2014

إفشاء

12/08/2014

الاعتدال

تمت الموافقة

إدخال

VDB-70611

EPSS

0.03123

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!