2 matches found
CVE-2014-0740
Cross-site request forgery CSRF vulnerability in the Call Detail Records Analysis and Reporting CAR interface in the OS Administration component in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows remote attackers to hijack the authentication of administrators for requests...
CVE-2014-0740
CVE-2014-0740 is a CSRF vulnerability in the Cisco Unified Communications Manager (Unified CM) OS Administration interface, specifically in the Call Detail Records Analysis and Reporting (CAR) web UI. Affected versions are Unified CM 10.0(1) and earlier. The root cause is insufficient CSRF protec...