CVE-2014-3300

Cisco Unified CDM Application Software < 10 - Unauthenticated User Information Modification via BVSMWeb Portal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-3300. Includes Metasploit module auxiliary/voip/cisco_cucdm_call_forward.

AI-analyzed exploit summary This Metasploit module exploits an access control vulnerability in Cisco Unified Communications Domain Manager (CVE-2014-3300) to modify call forwarding settings on IP phones. It interacts with XML services to retrieve or configure call forwarding for a specified MAC address.

Description

The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Software before 10 does not properly implement access control, which allows remote attackers to modify user information via a crafted URL, aka Bug ID CSCum77041.

Exploits (2)

metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/voip/cisco_cucdm_call_forward.rb

This Metasploit module exploits an access control vulnerability in Cisco Unified Communications Domain Manager (CVE-2014-3300) to modify call forwarding settings on IP phones. It interacts with XML services to retrieve or configure call forwarding for a specified MAC address.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Cisco Unified Communications Domain Manager (CDM) 10
No auth needed
Prerequisites: Network access to the target BVSMWeb portal · MAC address of the target IP phone
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/voip/cisco_cucdm_speed_dials.rb

This Metasploit module exploits an access control vulnerability (CVE-2014-3300) in Cisco Unified Communications Domain Manager (CUCDM) to manipulate speed dial entries on IP phones. It supports listing, adding, modifying, and deleting speed dials via unauthenticated HTTP requests.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Cisco Unified Communications Domain Manager (CUCDM) before version 10
No auth needed
Prerequisites: Network access to the target CUCDM web interface · Valid MAC address of a target IP phone
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030515
Vendor Advisory vendor-advisory x_refsource_cisco
http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=34689
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59556
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/68331

Scores

EPSS 0.2188
EPSS Percentile 97.3%

Details

CWE
CWE-264
Status published
Products (3)
cisco/unified_cdm_application_software 8.1
cisco/unified_cdm_application_software < 8.1.4
cisco/unified_communications_domain_manager
Published Jul 07, 2014
Tracked Since Feb 18, 2026