CVE-2014-0741

Sažetak

The certificate-import feature in the Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum95461.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0741
http://tools.cisco.com/security/center/viewAlert.x?alertId=33046
http://www.securitytracker.com/id/1029843

CVSS

Base:	6.2
Impact:	9.2
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	NONE

CVSS vektor

AV:L/AC:L/Au:S/C:C/I:C/A:N

Zadnje važnije ažuriranje

29-07-2015 - 16:16

Objavljeno

27-02-2014 - 01:55