CVE-2014-3281 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2014-3281

CWE

https://cwe.mitre.org/data/definitions/264.html

The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to obtain potentially sensitive user information by visiting an unspecified BVSMWeb web page, aka Bug IDs CSCun46071 and CSCun46101.

Affected Software

Name	Vendor	Start Version	End Version
Unified_communications_domain_manager	Cisco	- (including)	- (including)

References

http://secunia.com/advisories/58657
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3281
http://www.securityfocus.com/bid/67925
http://secunia.com/advisories/58657
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3281
http://www.securityfocus.com/bid/67925