CVE-2014-8024

2014-12-2302:00:00

cisco

www.cve.org

AI Score

6.2

Confidence

Low

EPSS

0.003

Percentile

70.6%

JSON

The API in the Guest Server in Cisco Jabber, when the HTML5 CORS feature is used, allows remote attackers to obtain sensitive information by sniffing the network during an HTTP (1) GET or (2) POST request, aka Bug ID CSCus19789.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8024

www.securityfocus.com/bid/71770

www.securitytracker.com/id/1031422

tools.cisco.com/security/center/viewAlert.x?alertId=36870