Vulnslist

Cisco product, release, and evidence lookup

CVE-2014-0651

The administrative interface in Cisco Context Directory Agent (CDA) does not properly enforce authorization requirements, which allows remote authenticated users to obtain administrative access by hijacking a session, aka Bug ID CSCuj45347.

SeverityMEDIUM
CVSS4.9
EPSS0.43% EPSS medium
CWECWE-264
KEV
Published
Modified

Public Affected Products

Product Advisory Evidence
Cisco Context Directory Agent Cisco-SA-20140109-CVE-2014-0651 Cisco CSAF ยท structured affected