CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-2190

Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless (aka BAC-TW) allows remote attackers to hijack the authentication of arbitrary users for requests that make BAC-TW changes, aka Bug IDs CSCuo23804 and CSCuo26389.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.3%

CVSS Severity

CVSS v2 Score 6.8

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2190
http://www.securitytracker.com/id/1030199
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2190
http://www.securitytracker.com/id/1030199

Products affected by CVE-2014-2190

Cisco » Broadband Access Center Telco Wireless Software » Version: N/A

cpe:2.3:a:cisco:broadband_access_center_telco_wireless_software:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2190

Products

Pricing

Contact Us