CVE-2014-0742

Sažetak

The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742
http://tools.cisco.com/security/center/viewAlert.x?alertId=33045
http://www.securitytracker.com/id/1029843

CVSS

Base:	6.2
Impact:	9.2
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	NONE

CVSS vektor

AV:L/AC:L/Au:S/C:C/I:C/A:N

Zadnje važnije ažuriranje

29-07-2015 - 17:11

Objavljeno

27-02-2014 - 01:55