Published: 29/08/2014 Updated: 29/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly consider whether a session is a problematic NULL session, which allows remote malicious users to obtain sensitive information via crafted packets, aka Bug IDs CSCuh87398 and CSCuh87380.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco cloud portal -

A vulnerability in Cisco Intelligent Automation for Cloud could allow an unauthenticated, remote attacker to view sensitive information The vulnerability is due to a failure to properly check for certain NULL sessions An attacker could exploit this vulnerability by submitting crafted packets to an affected device Cisco has confirmed the vulner ...

CWE-200 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3351 http://www.securitytracker.com/id/1030782 http://www.securityfocus.com/bid/69456 http://secunia.com/advisories/60960 https://exchange.xforce.ibmcloud.com/vulnerabilities/95585 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140829-CVE-2014-3351

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3351

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect