CVE-2014-0724
Cisco Unified Communications Manager < 10.0(1) - Unauthenticated Arbitrary File Read via Bulk Administration Interface
Title source: llmDescription
The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified prompt, aka Bug ID CSCum05340.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=32825
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0724
Scores
EPSS
0.0103
EPSS Percentile
59.7%
Details
CWE
CWE-20
Status
published
Products (2)
cisco/unified_communications_manager
10.0
cisco/unified_communications_manager
< 10.0\(1\)
Published
Feb 13, 2014
Tracked Since
Feb 18, 2026