Security Advisory

CVE-2014-3277

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-05-29 17:00:00

Last updated 2024-08-06 10:35:57

Assigner cisco

State PUBLISHED

Description

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain sensitive user and group information by leveraging Location Administrator privileges and entering a crafted URL, aka Bug ID CSCum77005.

← Browse all CVEs View on cve.org ↗