CVE-2014-0672

The Search and Play interface in Cisco MediaSense does not properly enforce authorization requirements, which allows remote authenticated users to download arbitrary recordings via a request to this interface.

Data: Cisco advisories 1 day ago · Cisco CSAF 4 hours ago · NVD CVEs 7 hours ago · NVD CPEs 1 day ago · CISA KEV 1 day ago · EPSS 1 day ago

Severity	MEDIUM
CVSS	4.0
EPSS	0.50% EPSS medium
CWE	CWE-264
KEV
Published	12 years ago
Modified	3 weeks ago

Products with public affected evidence

Product	Advisory	Affected evidence
Cisco MediaSense	Cisco-SA-20140122-CVE-2014-0672	structured affected CSAF product_status