Lucene search

CiscoCVE-2014-0671

HistoryJan 22, 2014 - 5:22 a.m.

CVE-2014-0671

2014-01-2205:22:20

CWE-20

cisco

web.nvd.nist.gov

cve-2014-0671

cisco mediasense

open redirect vulnerability

remote attackers

phishing attacks

bug id cscum16749

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

70.1%

JSON

Open redirect vulnerability in Cisco MediaSense allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter, aka Bug ID CSCum16749.

Affected configurations

Nvd

Node

ciscomediasenseMatch-

VendorProductVersionCPE
ciscomediasense-cpe:2.3:a:cisco:mediasense:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	mediasense	-	cpe:2.3:a:cisco:mediasense:-:::::::*

References

osvdb.org/102341

secunia.com/advisories/56544

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0671

tools.cisco.com/security/center/viewAlert.x?alertId=32517

www.securityfocus.com/bid/65055

www.securitytracker.com/id/1029669

exchange.xforce.ibmcloud.com/vulnerabilities/90617

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

70.1%

JSON

Related for CVE-2014-0671