2 matches found
CVE-2014-0657
The administration portal in Cisco Unified Communications Manager Unified CM 9.11 and earlier does not properly handle role restrictions, which allows remote authenticated users to bypass role-based access control via multiple visits to a forbidden portal URL, aka Bug ID CSCuj83540...
CVE-2014-0657
CVE-2014-0657 affects Cisco Unified Communications Manager (Unified CM) administration portal (9.1(1) and earlier). The issue is insufficient role restriction processing, allowing a remote, authenticated attacker to bypass role-based access by revisiting a previously denied portal URL, potentiall...