CVE-2014-3332

Published: Aug 11, 2014Modified: May 6, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:N

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

Cisco Unified Communications Manager (CM) 8.6(.2) and earlier has an incorrect CLI restrictions setting, which allows remote authenticated users to establish undetected concurrent logins via unspecified vectors, aka Bug ID CSCup98029.

Affected (1)

Products: Cisco: Unified Communications Manager

Cisco

1 product

Unified Communications Manager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cisco Unified Communications Manager	Up to 8.6\(2\)

References (10)

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3332

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=35198

Source: psirt@cisco.com

Vendor Advisory

http://www.securityfocus.com/bid/69068

Source: psirt@cisco.com

http://www.securitytracker.com/id/1030687

Source: psirt@cisco.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/95136

Source: psirt@cisco.com

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3332