CVE-2014-0686 | Vulnerability Database | Aqua Security

Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and earlier allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul24908.

Affected Software

Name	Vendor	Start Version	End Version
Unified_communications_manager	Cisco	*	9.1(2.10000.28) (including)
Unified_communications_manager	Cisco	9.1(1) (including)	9.1(1) (including)
Unified_communications_manager	Cisco	9.1(2) (including)	9.1(2) (including)

References

http://osvdb.org/102750
http://secunia.com/advisories/56818
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0686
http://tools.cisco.com/security/center/viewAlert.x?alertId=32683
http://www.securityfocus.com/bid/65281
https://exchange.xforce.ibmcloud.com/vulnerabilities/90852
http://osvdb.org/102750
http://secunia.com/advisories/56818
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0686
http://tools.cisco.com/security/center/viewAlert.x?alertId=32683
http://www.securityfocus.com/bid/65281
https://exchange.xforce.ibmcloud.com/vulnerabilities/90852

NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-0686
CWE	https://cwe.mitre.org/data/definitions/264.html