Unified Communications Manager Security Vulnerabilities and Issues — Unified Communications Manager CVE List

Lucene search

CiscoUnified Communications Manager

2 matches found

CVE•added 2014/08/11 8:55 p.m.•45 views

CVE-2014-3332

Cisco Unified Communications Manager (CM) 8.6(.2) and earlier has an incorrect CLI restrictions setting, which allows remote authenticated users to establish undetected concurrent logins via unspecified vectors, aka Bug ID CSCup98029.

4CVSS6.5AI score0.00353EPSS

CVE•added 2014/08/12 11:55 p.m.•44 views

CVE-2014-3338

The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is enabled, does not properly validate Kerberos SSO tokens, which allows remote authenticated users to gain privileges and execute arbitrary commands via crafted token data, aka Bug ID CSCum95491.

8.5CVSS7.6AI score0.0184EPSS