Cisco Unified Contact Center Express CVE-2014-0745 Cross Site Request Forgery Vulnerability

Cisco Unified Contact Center Express is prone to a cross-site request-forgery vulnerability because the application does not properly validate HTTP requests.

Exploiting this issue may allow a remote attacker to perform certain unauthorized actions in the context of the affected user. Other attacks are also possible.

This issue is being tracked by Cisco bug ID CSCum95502.


 

Privacy Statement
Copyright 2010, SecurityFocus