Lucene search

[email protected]NVD:CVE-2014-0674

HistoryJan 24, 2014 - 4:38 a.m.

CVE-2014-0674

2014-01-2404:38:09

CWE-287

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.017

Percentile

87.9%

JSON

Cisco Video Surveillance Operations Manager (VSOM) does not require authentication for MySQL database connections, which allows remote attackers to obtain sensitive information, modify data, or cause a denial of service by leveraging network connectivity from a client system with a crafted host name, aka Bug ID CSCud10992.

Affected configurations

Nvd

Node

ciscovideo_surveillance_operations_managerMatch-

VendorProductVersionCPE
ciscovideo_surveillance_operations_manager-cpe:2.3:a:cisco:video_surveillance_operations_manager:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	video_surveillance_operations_manager	-	cpe:2.3:a:cisco:video_surveillance_operations_manager:-:::::::*

References

osvdb.org/102409

secunia.com/advisories/56619

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0674

www.securityfocus.com/bid/65111

www.securitytracker.com/id/1029692

www.ubuntu.com/usn/USN-2739-1

exchange.xforce.ibmcloud.com/vulnerabilities/90651

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.017

Percentile

87.9%

JSON

Related for NVD:CVE-2014-0674

prion1 cve1 cisco1 cvelist1