Vulnerability Details CVE-2014-3351
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly consider whether a session is a problematic NULL session, which allows remote attackers to obtain sensitive information via crafted packets, aka Bug IDs CSCuh87398 and CSCuh87380.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/60960
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3351
- http://www.securityfocus.com/bid/69456
- http://www.securitytracker.com/id/1030782
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95585
- http://secunia.com/advisories/60960
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3351
- http://www.securityfocus.com/bid/69456
- http://www.securitytracker.com/id/1030782
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95585
Products affected by CVE-2014-3351
-
cpe:2.3:a:cisco:cloud_portal:-