CVE-2014-2194
Cisco Unified Web and E-mail Interaction Manager 9.0(2) - SSRF
Title source: llmDescription
system/egain/chat/entrypoint in Cisco Unified Web and E-mail Interaction Manager 9.0(2) allows remote attackers to have an unspecified impact by injecting a spoofed XML external entity.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2194
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=34270
Scores
EPSS
0.0125
EPSS Percentile
65.8%
Details
CWE
CWE-20
Status
published
Products (1)
cisco/unified_web_and_e-mail_interaction_manager
9.0\(2\)
Published
May 20, 2014
Tracked Since
Feb 18, 2026