Sensitive Information Disclosure in Cisco Jabber Guest Server using HTML5
CVE-2014-8025

Currently unrated

Key Information:

Vendor

Cisco
Status
Jabber Guest
Vendor
CVE Published:
23 December 2014

What is CVE-2014-8025?

The Guest Server in Cisco Jabber, when utilizing HTML5, is susceptible to a vulnerability that enables remote attackers to potentially access sensitive data through network sniffing during HTTP GET or POST operations. This occurs when the API processes responses, allowing malicious entities to exploit this weakness and intercept data transmitted over the network.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securitytracker.com/id/1031422
vdb-entryx_refsource_SECTRACK
https://tools.cisco.com/security/center/viewAlert.x?alert...
vendor-advisoryx_refsource_CISCO
http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.