Lucene search
CiscoCVE-2014-0745HistoryFeb 27, 2014 - 1:55 a.m.
CVE-2014-0745
2014-02-2701:55:03
CWE-352
cisco
web.nvd.nist.gov
28
cve-2014-0745
csrf
vulnerability
cisco
unified ccx
nvd
cscum95502
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.001
Percentile
39.6%
Cross-site request forgery (CSRF) vulnerability in the Unified Serviceability subsystem in Cisco Unified Contact Center Express (Unified CCX) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCum95502.
Affected configurations
Node
ciscounified_contact_center_express_editor_softwareMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_contact_center_express_editor_software | - | cpe:2.3:a:cisco:unified_contact_center_express_editor_software:-:*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2014-02-27 01:55:00
cvelist
cvelist
CVE-2014-0745
2014-02-27 01:00:00
nvd
nvd
CVE-2014-0745
2014-02-27 01:55:03
cisco
cisco
Cisco Unified Contact Center Express Serviceability Page CSRF Vulnerability
2014-02-27 22:52:01
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.001
Percentile
39.6%
Related for CVE-2014-0745