CVE-2014-2193
Cisco Unified Web and E-Mail Interaction Manager places session identifiers in GET requests, which allows remote attackers to inject conversation text by obtaining a valid identifier, aka Bug ID CSCuj43084.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0022 (0.2%)
Percentile: 44.8%
EPSS: 2026-05-06
Affects
cisco:unified_web_and_e-mail_interaction_managerTechnical description
Cisco Unified Web and E-Mail Interaction Manager places session identifiers in GET requests, which allows remote attackers to inject conversation text by obtaining a valid identifier, aka Bug ID CSCuj43084.
Published: 5/20/2014, 11:13:37 AM
Last modified: 5/6/2026, 10:30:45 PM