Lucene search
CiscoCVE-2014-3298HistoryJul 02, 2014 - 10:35 a.m.
CVE-2014-3298
2014-07-0210:35:25
CWE-255
cisco
web.nvd.nist.gov
29
cisco
intelligent automation
cloud
form data viewer
vulnerability
nvd
cve-2014-3298
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
5.8
Confidence
Low
EPSS
0.002
Percentile
56.3%
Form Data Viewer in Cisco Intelligent Automation for Cloud in Cisco Cloud Portal places passwords in form data, which allows remote authenticated users to obtain sensitive information by reading HTML source code, aka Bug ID CSCui36976.
Affected configurations
Node
ciscocloud_portalMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | cloud_portal | - | cpe:2.3:a:cisco:cloud_portal:-:*:*:*:*:*:*:* |
Related
cisco
cisco
prion
prion
Information disclosure
2014-07-02 10:35:00
cvelist
cvelist
CVE-2014-3298
2014-07-02 10:00:00
nvd
nvd
CVE-2014-3298
2014-07-02 10:35:25
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
5.8
Confidence
Low
EPSS
0.002
Percentile
56.3%
Related for CVE-2014-3298