Unrated severityNVD Advisory· Published Nov 18, 2014· Updated May 6, 2026

CVE-2014-7996

Description

Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Integrated Management Controller in Cisco Unified Computing System allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuq45477.

Affected products

Cisco Systems, Inc./Unified Computing System
cpe:2.3:h:cisco:unified_computing_system:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7996nvdVendor Advisory
tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
secunia.com/advisories/62565nvd
www.securityfocus.com/bid/71171nvd
exchange.xforce.ibmcloud.com/vulnerabilities/98769nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000