CVE-2014-2190
Cisco Broadband Access Center for Telco and Wireless - Cross-Site Request Forgery
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless (aka BAC-TW) allows remote attackers to hijack the authentication of arbitrary users for requests that make BAC-TW changes, aka Bug IDs CSCuo23804 and CSCuo26389.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030199
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2190
Scores
EPSS
0.0082
EPSS Percentile
52.8%
Details
CWE
CWE-352
Status
published
Products (1)
cisco/broadband_access_center_telco_wireless_software
Published
May 07, 2014
Tracked Since
Feb 18, 2026