CVE-2014-3320

Sažetak

Multiple open redirect vulnerabilities in the admin web interface in the web framework in Cisco Unified Communications Domain Manager (CDM) 8.1(.4) and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via crafted URLs for unspecified scripts, aka Bug ID CSCuo48835.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3320
http://tools.cisco.com/security/center/viewAlert.x?alertId=34960
http://www.securityfocus.com/bid/68694
http://www.securitytracker.com/id/1030613

CVSS

Base:	5.8
Impact:	4.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

12-01-2017 - 11:51

Objavljeno

18-07-2014 - 00:55