CVE-2014-0741

high

Description

The certificate-import feature in the Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum95461.

References

http://www.securitytracker.com/id/1029843

http://tools.cisco.com/security/center/viewAlert.x?alertId=33046

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0741

Details

Source: Mitre, NVD

Published: 2014-02-27

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:N

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.0008