Dynamic Content Modification Vulnerability in Cisco Emergency Responder
CVE-2014-2116

Currently unrated

Key Information:

Vendor: Cisco
Status: Emergency Responder
Vendor: CVE Published:; 4 April 2014

What is CVE-2014-2116?

Cisco Emergency Responder versions 8.6 and earlier are susceptible to a dynamic content modification vulnerability that allows remote attackers to inject malicious web pages and alter dynamic web content through unspecified parameters. This vulnerability, recognized by Bug ID CSCun37882, exposes users to potential security risks, enabling attackers to manipulate the application behavior and potentially exploit further insecurities.

References

http://www.securityfocus.com/bid/66632

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1030019

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 4, 2014
Vulnerability Reserved
Feb 25, 2014