cbcvebase.
CVE-2014-0657
published 2014-01-08

CVE-2014-0657: The administration portal in Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier does not properly handle role restrictions, which allows…

medium4CVSS 3.1
AVNACLAuSCPINAN
The administration portal in Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier does not properly handle role restrictions, which allows remote authenticated users to bypass role-based access control via multiple visits to a forbidden portal URL, aka Bug ID CSCuj83540.

Affected

113 ranges· showing 25
VendorProductVersion rangeFixed in
ciscounified_communications_manager<= 9.1\(1\)
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager
ciscounified_communications_manager