NVD

Id
29588  
Name
CVE-2014-0725  
Description
Cisco Unified Communications Manager (UCM) does not require authentication for reading WAR files, which allows remote attackers to obtain sensitive information via unspecified access to a "file storage location," aka Bug ID CSCum05337.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2014-02-13  
Modified Date
2014-02-13  
Seq
2014-0725  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
156673 29588 CVE-2014-0725 20140212 Cisco Unified Communications Manager WAR File Availability Vulnerability  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
12524 JVNDB-2014-001399 Cisco Unified Communications Manager における重要な情報を取得される脆弱性 Cisco Unified Communications Manager (UCM) は、WAR ファイルの読み込みに対して認証を要求しないため、重要な情報を取得される脆弱性が存在します。 CVE-2014-0725 68126 CVE-2014-0725 29588 5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001399.html 2014-02-13 2014-02-14 View