CVE-2014-0686

Published: Feb 4, 2014Modified: Apr 29, 2026

6.0

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Exploitability: 1.5 / Impact: 10.0

Source: NVD

Description

Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and earlier allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul24908.

Affected (3)

Products: Cisco: Unified Communications Manager

1 product

Unified Communications Manager

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Cisco Unified Communications Manager	Up to 9.1\(2.10000.28\)
Cisco Unified Communications Manager	Version 9.1(1)
Cisco Unified Communications Manager	Version 9.1(2)

Related CWEs

References (12)

http://osvdb.org/102750

Source: psirt@cisco.com

http://secunia.com/advisories/56818

Source: psirt@cisco.com

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0686

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=32683

Source: psirt@cisco.com

Vendor Advisory

http://www.securityfocus.com/bid/65281

Source: psirt@cisco.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/90852

Source: psirt@cisco.com

http://osvdb.org/102750

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/56818

Source: af854a3a-2127-422b-91ae-364da2661108

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0686

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=32683

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/65281

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/90852

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.