iFrame Vulnerability in Cisco Intelligent Automation for Cloud
CVE-2014-3352

Currently unrated

Key Information:

Vendor: Cisco
Status: Cloud Portal
Vendor: CVE Published:; 30 August 2014

Summary

The vulnerability in Cisco Intelligent Automation for Cloud arises from improper handling of NULL sessions, allowing remote attackers to send crafted packets that can lead to the exposure of sensitive information. This issue is related to an iFrame vulnerability and is documented under Bug ID CSCuh84801. Organizations using affected versions of the Cisco Intelligent Automation for Cloud software are advised to review their security posture and apply appropriate mitigations to safeguard sensitive data.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/95605

vdb-entryx_refsource_XF

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/69458

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Aug 30, 2014
Vulnerability Reserved
May 7, 2014