CVE-2014-3320

2014-07-1801:00:00

[email protected]

web.nvd.nist.gov

cve-2014-3320

cisco

unified communications domain manager

cdm

open redirect

remote attackers

phishing attacks

web framework

bug id cscuo48835

7.1 High

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

52.2%

JSON

Multiple open redirect vulnerabilities in the admin web interface in the web framework in Cisco Unified Communications Domain Manager (CDM) 8.1(.4) and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via crafted URLs for unspecified scripts, aka Bug ID CSCuo48835.

Affected configurations

NVD

Node

ciscounified_communications_domain_managerRange≤8.1\(.4\)

ciscounified_communications_domain_managerMatch8.1

ciscounified_communications_domain_managerMatch8.1\(.1\)

ciscounified_communications_domain_managerMatch8.1\(.2\)

ciscounified_communications_domain_managerMatch8.1\(.3\)

CPENameOperatorVersion
cisco:unified_communications_domain_managercisco unified communications domain managerle8.1\(.4\)
cisco:unified_communications_domain_managercisco unified communications domain managereq8.1
cisco:unified_communications_domain_managercisco unified communications domain managereq8.1\(.1\)
cisco:unified_communications_domain_managercisco unified communications domain managereq8.1\(.2\)
cisco:unified_communications_domain_managercisco unified communications domain managereq8.1\(.3\)

CPE	Name	Operator	Version
cisco:unified_communications_domain_manager	cisco unified communications domain manager	le	8.1\(.4\)
cisco:unified_communications_domain_manager	cisco unified communications domain manager	eq	8.1
cisco:unified_communications_domain_manager	cisco unified communications domain manager	eq	8.1\(.1\)
cisco:unified_communications_domain_manager	cisco unified communications domain manager	eq	8.1\(.2\)
cisco:unified_communications_domain_manager	cisco unified communications domain manager	eq	8.1\(.3\)