CORS Vulnerability in Cisco Jabber Guest Server API (Bug ID CSCus19789)

CORS Vulnerability in Cisco Jabber Guest Server API (Bug ID CSCus19789)

CVE-2014-8024 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The API in the Guest Server in Cisco Jabber, when the HTML5 CORS feature is used, allows remote attackers to obtain sensitive information by sniffing the network during an HTTP (1) GET or (2) POST request, aka Bug ID CSCus19789.

Learn more about our Cis Benchmark Audit For Cisco.