CVE-2014-0743
Cisco Unified Communications Manager < 10.0(1) - Unauthenticated Authentication Bypass in CAPF
Title source: llmDescription
The Certificate Authority Proxy Function (CAPF) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to bypass authentication and modify registered-device information via crafted data, aka Bug ID CSCum95468.
References (3)
Core 3
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0743
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1029843
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=33044
Scores
EPSS
0.0138
EPSS Percentile
68.7%
Details
CWE
CWE-287
Status
published
Products (18)
cisco/unified_communications_manager
3.3\(5\)
cisco/unified_communications_manager
3.3\(5\)sr1
cisco/unified_communications_manager
3.3\(5\)sr2a
cisco/unified_communications_manager
4.1\(3\)
cisco/unified_communications_manager
4.1\(3\)sr1
cisco/unified_communications_manager
4.1\(3\)sr2
cisco/unified_communications_manager
4.1\(3\)sr3
cisco/unified_communications_manager
4.1\(3\)sr4
cisco/unified_communications_manager
4.2
cisco/unified_communications_manager
4.2.1
... and 8 more
Published
Feb 27, 2014
Tracked Since
Feb 18, 2026