Authentication Bypass Vulnerability in Cisco Unified Communications Manager (Unified CM) RTMT Web Application (CSCum46495)

Authentication Bypass Vulnerability in Cisco Unified Communications Manager (Unified CM) RTMT Web Application (CSCum46495)

CVE-2014-0732 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Real Time Monitoring Tool (RTMT) web application in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier does not properly enforce authentication requirements, which allows remote attackers to read application files via a direct request to a URL, aka Bug ID CSCum46495.

Learn more about our Cis Benchmark Audit For Cisco.