Published: 24/01/2014 Updated: 29/08/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Subscribe to Video Surveillance Operations Manager

Cisco Video Surveillance Operations Manager (VSOM) does not require authentication for MySQL database connections, which allows remote malicious users to obtain sensitive information, modify data, or cause a denial of service by leveraging network connectivity from a client system with a crafted host name, aka Bug ID CSCud10992.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco video surveillance operations manager -

Debian Bug report logs - #777656 freetype: various new security issues Package: src:freetype; Maintainer for src:freetype is Hugh McMaster <hughmcmaster@outlookcom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 11 Feb 2015 06:54:07 UTC Severity: grave Tags: fixed-upstream, security, upstream Fo ...

A vulnerability in the configuration of the MySQL database as installed by Cisco Video Surveillance Operations Manager (VSOM) could allow an unauthenticated, remote attacker to access the MySQL database The vulnerability is due to insufficient authentication controls An attacker could exploit this vulnerability by connecting to the database on a ...

CWE-287 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0674 http://osvdb.org/102409 http://secunia.com/advisories/56619 http://www.securityfocus.com/bid/65111 http://www.securitytracker.com/id/1029692 http://www.ubuntu.com/usn/USN-2739-1 https://exchange.xforce.ibmcloud.com/vulnerabilities/90651 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777656 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140124-CVE-2014-0674

CVE-2014-0674

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect