CVE-2014-2180

The Document Management component in Cisco Unified Contact Center Express does not properly validate a parameter, which allows remote authenticated users to upload files to arbitrary pathnames via a crafted HTTP request, aka Bug ID CSCun74133.

Severity	MEDIUM
CVSS	4.0
CWE	CWE-20
KEV
Published	12 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco RV Series Routers	Cisco-SA-20140429-CVE-2014-2180
Cisco Nexus Dashboard	Cisco-SA-20140429-CVE-2014-2180
Cisco Unified Contact Center Express	Cisco-SA-20140429-CVE-2014-2180
Cisco Unified Contact Center	Cisco-SA-20140429-CVE-2014-2180