Unrated severityNVD Advisory· Published May 29, 2014· Updated Jun 17, 2026
CVE-2014-3277
CVE-2014-3277
Description
The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain sensitive user and group information by leveraging Location Administrator privileges and entering a crafted URL, aka Bug ID CSCum77005.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:cisco:unified_communications_domain_manager:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:cisco:unified_communications_domain_manager:*:*:*:*:*:*:*:*range: <=9.0\(.1\)
- cpe:2.3:a:cisco:unified_communications_domain_manager:7.4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unified_communications_domain_manager:8.6:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unified_communications_domain_manager:8.6\(.2\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:unified_communications_domain_manager:9.0:*:*:*:*:*:*:*
- (no CPE)range: <=9.0(.1)
Patches
Vulnerability mechanics
References
5- tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3277nvdVendor Advisory
- tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
- www.securityfocus.com/bid/67664nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1030306nvdThird Party AdvisoryVDB Entry
- secunia.com/advisories/58400nvd
News mentions
0No linked articles in our index yet.