Unrated severityNVD Advisory· Published Nov 21, 2014· Updated Jun 17, 2026
CVE-2014-8000
CVE-2014-8000
Description
Cisco Unified Communications Manager IM and Presence Service 9.1(1) produces different returned messages for URL requests depending on whether a username exists, which allows remote attackers to enumerate user accounts via a series of requests, aka Bug ID CSCur63497.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:9.1\(1\):*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:9.1\(1\):*:*:*:*:*:*:*
- (no CPE)range: =9.1(1)
Patches
Vulnerability mechanics
References
6- tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8000nvdVendor Advisory
- tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
- secunia.com/advisories/62558nvd
- www.securityfocus.com/bid/71173nvd
- www.securitytracker.com/id/1031240nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/98786nvd
News mentions
0No linked articles in our index yet.