The Real Time Monitoring Tool (RTMT) web application in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier does not properly enforce authentication requirements, which allows remote attackers to read application files via a direct request to a URL, aka Bug ID CSCum46495.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0732 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=32913 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2014-02-20T02:00:00
Updated: 2014-02-20T02:57:00
Reserved: 2014-01-02T00:00:00
Link: CVE-2014-0732
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-02-20T05:18:04.140
Modified: 2014-02-21T00:26:40.500
Link: CVE-2014-0732
JSON object: View
Redhat Information
No data.
CWE