Lucene search

[email protected]CVE-2014-2117

HistoryApr 04, 2014 - 3:10 p.m.

CVE-2014-2117

2014-04-0415:10:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2014-2117

cisco emergency responder

open redirect

remote attackers

phishing

bug id cscun37909

nvd

7.1 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

69.2%

JSON

Multiple open redirect vulnerabilities in Cisco Emergency Responder (ER) 8.6 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters, aka Bug ID CSCun37909.

CPENameOperatorVersion
cisco:emergency_respondercisco emergency responderle8.6

CPE	Name	Operator	Version
cisco:emergency_responder	cisco emergency responder	le	8.6

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2117

tools.cisco.com/security/center/viewAlert.x?alertId=33642

www.securityfocus.com/bid/66634

www.securitytracker.com/id/1030019

7.1 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

69.2%

JSON

Related for CVE-2014-2117

cisco1 cvelist1 prion1