Unrated severityNVD Advisory· Published Aug 30, 2014· Updated May 6, 2026
CVE-2014-3352
CVE-2014-3352
Description
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) 2008.3_SP9 and earlier does not properly consider whether a session is a problematic NULL session, which allows remote attackers to obtain sensitive information via crafted packets, related to an "iFrame vulnerability," aka Bug ID CSCuh84801.
Affected products
12cpe:2.3:a:cisco:cloud_portal:2008.3:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:cisco:cloud_portal:2008.3:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:2008.3:sp6:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:2008.3:sp7:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:2008.3:sp8:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:9.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:9.1:sp2:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:9.1:sp3:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:9.3:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:9.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:9.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:9.4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:cloud_portal:*:sp9:*:*:*:*:*:*range: <=2008.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3352nvdVendor Advisory
- tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
- secunia.com/advisories/60956nvd
- www.securityfocus.com/bid/69458nvd
- www.securitytracker.com/id/1030785nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/95605nvd
News mentions
0No linked articles in our index yet.