CVE-2014-8008

Published Jan 22, 2015

Last updated 8 years ago

Overview

Description
Absolute path traversal vulnerability in the Real-Time Monitoring Tool (RTMT) API in Cisco Unified Communications Manager (CUCM) allows remote authenticated users to read arbitrary files via a full pathname in an API command, aka Bug ID CSCur49414.
Source
ykramarz@cisco.com
NVD status
Modified

Risk scores

CVSS 2.0

Type
Primary
Base score
6.8
Impact score
6.9
Exploitability score
8
Vector string
AV:N/AC:L/Au:S/C:C/I:N/A:N

Weaknesses

nvd@nist.gov
CWE-200

Social media

Hype score
Not currently trending

Configurations