VYPR
Unrated severityNVD Advisory· Published May 29, 2014· Updated Jun 17, 2026

CVE-2014-3277

CVE-2014-3277

Description

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain sensitive user and group information by leveraging Location Administrator privileges and entering a crafted URL, aka Bug ID CSCum77005.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:cisco:unified_communications_domain_manager:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:cisco:unified_communications_domain_manager:*:*:*:*:*:*:*:*range: <=9.0\(.1\)
    • cpe:2.3:a:cisco:unified_communications_domain_manager:7.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:unified_communications_domain_manager:8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:unified_communications_domain_manager:8.6\(.2\):*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:unified_communications_domain_manager:9.0:*:*:*:*:*:*:*
    • (no CPE)range: <=9.0(.1)

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.