Unrated severityNVD Advisory· Published Apr 5, 2014· Updated May 6, 2026

CVE-2014-2145

Description

Directory traversal vulnerability in the messaging API in Cisco Unity Connection allows remote authenticated users to read arbitrary files via vectors related to unenforced access constraints for .wav files and the audio/x-wav MIME type, aka Bug ID CSCun91071.

Affected products

Cisco Systems, Inc./Unity Connection
cpe:2.3:a:cisco:unity_connection:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2145nvdVendor Advisory
www.securityfocus.com/bid/66676nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000