CVE-2014-0743 — Improper Authentication in Cisco Unified Communications Manager
Severity
5.0MEDIUMNVD
EPSS
0.5%
top 35.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 27
Latest updateMay 17
Description
The Certificate Authority Proxy Function (CAPF) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to bypass authentication and modify registered-device information via crafted data, aka Bug ID CSCum95468.
CVSS vector
AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9
Affected Packages1 packages
🔴Vulnerability Details
2📋Vendor Advisories
1Cisco▶
Cisco Unified Communications Manager CAPF Unauthenticated Device Information Update Vulnerability↗2014-02-25