CVE-2014-3352
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) 2008.3_SP9 and earlier does not properly consider whether a session is a problematic NULL session, which allows remote attackers to obtain sensitive information via crafted packets, related to an "iFrame vulnerability," aka Bug ID CSCuh84801.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0105 (1.0%)
Percentil: 77.6%
EPSS: 2026-05-06
Afecta
cisco:cloud_portalDescripción técnica
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) 2008.3_SP9 and earlier does not properly consider whether a session is a problematic NULL session, which allows remote attackers to obtain sensitive information via crafted packets, related to an "iFrame vulnerability," aka Bug ID CSCuh84801.
Publicada: 30/8/2014, 9:55:05
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://secunia.com/advisories/60956
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3352
- http://tools.cisco.com/security/center/viewAlert.x?alertId=35479
- http://www.securityfocus.com/bid/69458
- http://www.securitytracker.com/id/1030785
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95605
- http://secunia.com/advisories/60956
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3352