Command Injection Vulnerability in Cisco Unified Communications Manager (Unified CM) CAPF CLI Implementation (CSCum95493)

Command Injection Vulnerability in Cisco Unified Communications Manager (Unified CM) CAPF CLI Implementation (CSCum95493)

CVE-2014-0747 · MEDIUM Severity

AV:L/AC:L/AU:S/C:C/I:C/A:C

The Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to inject commands via unspecified CAPF programs, aka Bug ID CSCum95493.

Learn more about our Cis Benchmark Audit For Cisco.