Lucene search

[email protected]CVE-2014-2102

HistoryFeb 27, 2014 - 1:55 a.m.

CVE-2014-2102

2014-02-2701:55:00

CWE-264

[email protected]

web.nvd.nist.gov

cisco

unified contact center express

unified ccx

cve-2014-2102

bug id cscum95575

information security

vulnerability

6 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

41.6%

JSON

Cisco Unified Contact Center Express (Unified CCX) does not properly restrict the content of the CCMConfig page, which allows remote authenticated users to obtain sensitive information by examining this content, aka Bug ID CSCum95575.

CPENameOperatorVersion
cisco:unified_contact_center_express_editor_softwarecisco unified contact center express editor softwareeq-

CPE	Name	Operator	Version
cisco:unified_contact_center_express_editor_software	cisco unified contact center express editor software	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2102

www.securitytracker.com/id/1029842

6 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

41.6%

JSON

Related for CVE-2014-2102

prion1 cvelist1 cisco1