CVE-2014-3300

high Cisco
CVSS v3 Base Score
7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
45.6%
Exploitation probability in 30 days
Top 2% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: July 7, 2014 (4329 days ago)
Last Modified: May 6, 2026
Vendor: Cisco
Source: NVD

Description

The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Software before 10 does not properly implement access control, which allows remote attackers to modify user information via a crafted URL, aka Bug ID CSCum77041.

CWE

CWE-264

Affected Products

cisco unified cdm application softwarecisco unified communications domain manager

References

🔗 secunia.com 🔗 tools.cisco.com 🔗 tools.cisco.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com