2 matches found
CVE-2014-0734
CVE-2014-0734 affects Cisco Unified Communications Manager CAPF. The Certificate Authority Proxy Function fails to properly sanitize user input, enabling a remote attacker to craft a URL that executes arbitrary SQL commands. Affected: UCM 10.0(1) and earlier. Impact: potential data exposure/modif...
CVE-2014-0734
SQL injection vulnerability in the Certificate Authority Proxy Function CAPF implementation in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows remote attackers to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum46483...