CVE-2014-0657

NONECVSS 0.0

0.0

The administration portal in Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier does not properly handle role restrictions, which allows remote authenticated users to bypass role-based access control via multiple visits to a forbidden portal URL, aka Bug ID CSCuj83540.

🔗 References (14)

psirt@ciscohttp://osvdb.org/101800
psirt@ciscohttp://secunia.com/advisories/56368
psirt@ciscohttp://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0657
psirt@ciscohttp://tools.cisco.com/security/center/viewAlert.x?alertId=32341
psirt@ciscohttp://www.securityfocus.com/bid/64690
psirt@ciscohttp://www.securitytracker.com/id/1029571
psirt@ciscohttps://exchange.xforce.ibmcloud.com/vulnerabilities/90120
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/101800
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/56368
af854a3a-2127-422b-91ae-364da2661108http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0657
af854a3a-2127-422b-91ae-364da2661108http://tools.cisco.com/security/center/viewAlert.x?alertId=32341
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/64690
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1029571
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/90120

Is Your Infrastructure Affected by CVE-2014-0657?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2014-0657

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2014-0657?