NVD

Id
31503  
Name
CVE-2014-3300  
Description
The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Software before 10 does not properly implement access control, which allows remote attackers to modify user information via a crafted URL, aka Bug ID CSCum77041.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2014-07-07  
Modified Date
2017-01-12  
Seq
2014-3300  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
165167 31503 CVE-2014-3300 20140702 Multiple Vulnerabilities in Cisco Unified Communications Domain Manager  View
165168 31503 CVE-2014-3300 20140702 Identifying and Mitigating Exploitation of the Multiple Vulnerabilities in Cisco Unified Communications Domain Manager  View
165169 31503 CVE-2014-3300 68331  View
165170 31503 CVE-2014-3300 1030515  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
14352 JVNDB-2014-003227 Cisco Unified CDM Application Software の Cisco Unified Communications Domain Manager におけるユーザ情報を変更される脆弱性 Cisco Unified CDM Application Software の Cisco Unified Communications Domain Manager (CDM) の Web フレームワークの BVSMWeb ポータルは、アクセスコントロールを適切に実装していないため、ユーザ情報を変更される脆弱性が存在します。 CVE-2014-3300 70588 CVE-2014-3300 31503 7.5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-003227.html 2014-07-02 2014-07-08 View