Lucene search
CiscoCVE-2014-2185HistoryApr 29, 2014 - 10:37 a.m.
CVE-2014-2185
2014-04-2910:37:04
CWE-200
cisco
web.nvd.nist.gov
26
cve-2014-2185
cisco unified communications manager
cdr management
bug id cscun74374
nvd
information security
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
43.5%
The Call Detail Records (CDR) Management component in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to obtain sensitive information by reading extraneous fields in an HTML document, aka Bug ID CSCun74374.
Affected configurations
Node
ciscounified_communications_manager
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_communications_manager | * | cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2014-2185
2014-04-29 10:37:04
prion
prion
Hardcoded credentials
2014-04-29 10:37:00
cvelist
cvelist
CVE-2014-2185
2014-04-29 10:00:00
cisco
cisco
Cisco Unified Communications Manager CDR Management Vulnerability
2014-04-29 18:32:27
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
43.5%
Related for CVE-2014-2185