CVE-2014-3338

The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is enabled, does not properly validate Kerberos SSO tokens, which allows remote authenticated users to gain privileges and execute arbitrary commands via crafted token data, aka Bug ID CSCum95491.

CVSS v2.0 8.5 HIGH

8.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:S/C:C/I:C/A:C

Exploitability : 6.8 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/60054
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3338	Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=35258	Vendor Advisory
http://www.securityfocus.com/bid/69176
http://www.securitytracker.com/id/1030710
https://exchange.xforce.ibmcloud.com/vulnerabilities/95246

Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:unified_communications_manager:10.0\(1\):*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-08-12 23:55

Updated : 2023-12-10 11:31

NVD link : CVE-2014-3338

Mitre link : CVE-2014-3338

CVE.ORG link : CVE-2014-3338

JSON object : View

Products Affected

cisco

unified_communications_manager

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2014-3338", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 8.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-08-12T23:55:03.907", "references": [{"url": "http://secunia.com/advisories/60054", "source": "ykramarz@cisco.com"}, {"url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3338", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=35258", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securityfocus.com/bid/69176", "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id/1030710", "source": "ykramarz@cisco.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95246", "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is enabled, does not properly validate Kerberos SSO tokens, which allows remote authenticated users to gain privileges and execute arbitrary commands via crafted token data, aka Bug ID CSCum95491."}, {"lang": "es", "value": "El m\u00f3dulo CTIManager en Cisco Unified Communications Manager (CM) 10.0(1), cuando el inicio se sesi\u00f3n \u00fanico (single sign-on) est\u00e1 habilitado, no valida debidamente los tokens Kerberos SSO, lo que permite a usuarios remotos autenticados ganar privilegios y ejecutar comandos arbitrarios a trav\u00e9s de datos de tokens manipulados, tambi\u00e9n conocido como Bug ID CSCum95491."}], "lastModified": "2017-08-29T01:34:42.733", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unified_communications_manager:10.0\\(1\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0890B9FC-671D-4CB4-BA5C-3D3EE7124BCC"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}