1. Home
  2. CVE Database
  3. CVE-2014-0746
MEDIUM · 4.0

CVE-2014-0746

The disaster recovery system (DRS) in Cisco Unified Contact Center Express (Unified CCX) allows remote authenticated users to obtain sensitive information by reading extraneous fields in an HTML docum...

Vulnerability Description

The disaster recovery system (DRS) in Cisco Unified Contact Center Express (Unified CCX) allows remote authenticated users to obtain sensitive information by reading extraneous fields in an HTML document, aka Bug ID CSCum95536.

CVSS Score

4.0

MEDIUM

AV:N/AC:L/Au:S/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
CiscoUnified Contact Center Express Editor Software-

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2014-0746?

CVE-2014-0746 is a vulnerability with a CVSS score of 4.0 (MEDIUM). The disaster recovery system (DRS) in Cisco Unified Contact Center Express (Unified CCX) allows remote authenticated users to obtain sensitive information by reading extraneous fields in an HTML docum...

How severe is CVE-2014-0746?

CVE-2014-0746 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-0746?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Contact Center Express Editor Software.