CVE-2014-3338 in Unified Communications Managerinformação

Sumário

de MITRE

The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is enabled, does not properly validate Kerberos SSO tokens, which allows remote authenticated users to gain privileges and execute arbitrary commands via crafted token data, aka Bug ID CSCum95491.

Once again VulDB remains the best source for vulnerability data.

Reservar

07/05/2014

Divulgação

12/08/2014

Moderação

aceite

Entrada

VDB-70611

CPE

pronto

EPSS

0.03123

KEV

não

Atividades

muito baixo

Fontes

Do you want to use VulDB in your project?

Use the official API to access entries easily!