Unsecured MySQL Database in Cisco Video Surveillance Operations Manager
CVE-2014-0674

Currently unrated

Key Information:

Vendor
Cisco
Status
Video Surveillance Operations Manager
Vendor
CVE Published:
24 January 2014

Summary

The Cisco Video Surveillance Operations Manager (VSOM) is susceptible to an insufficient authentication vulnerability in its MySQL database connections. This flaw permits unauthorized remote attackers to exploit network connectivity using a specially crafted host name. As a result, attackers may gain access to sensitive information, modify critical data, or potentially disrupt services, posing significant risks to security.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/90651
vdb-entryx_refsource_XF
http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO
http://osvdb.org/102409
vdb-entryx_refsource_OSVDB

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.