Authentication Bypass and Arbitrary File Read Vulnerability in Cisco Unified Communications Manager (UCM)

Authentication Bypass and Arbitrary File Read Vulnerability in Cisco Unified Communications Manager (UCM)

CVE-2014-0724 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified prompt, aka Bug ID CSCum05340.

Learn more about our Cis Benchmark Audit For Cisco.