CVE-2014-3283: Input Validation
First published: Thu May 29 2014(Updated: )
Open redirect vulnerability in Self-Care Client Portal applications in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka Bug ID CSCun79731.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified Communications Domain Manager | <=9.0\(.1\) | |
| Cisco Unified Communications Domain Manager | =7.4 | |
| Cisco Unified Communications Domain Manager | =8.6 | |
| Cisco Unified Communications Domain Manager | =8.6\(.2\) | |
| Cisco Unified Communications Domain Manager | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco unified communications domain manager
- version/cisco unified communications domain manager/9.0\(.1\)
- version/cisco unified communications domain manager/7.4
- version/cisco unified communications domain manager/8.6
- version/cisco unified communications domain manager/8.6\(.2\)
- version/cisco unified communications domain manager/9.0