CVE-2014-0742

high

Description

The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464.

References

http://www.securitytracker.com/id/1029843

http://tools.cisco.com/security/center/viewAlert.x?alertId=33045

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742

Details

Source: Mitre, NVD

Published: 2014-02-27

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:N

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.0008