CVE-2014-2104

CVE Database · CVE-2014-2104

CVE-2014-2104

· N/AModified

CVSS v3.1

N/A

EPSS

1.15%

Published

Mar 2, 2014

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple cross-site scripting (XSS) vulnerabilities in the Business Voice Services Manager (BVSM) page in Cisco Unified Communications Domain Manager 9.0(.1) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCum78536, CSCum78526, CSCum69809, and CSCum63113.

Weaknesses (CWE)

CWE-79

Affected Products (1)

cisco · unified_communications_domain_managervulnerable

References (6)

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2104

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=33111

Vendor Advisory

http://www.securityfocus.com/bid/65869

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2104

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=33111

Vendor Advisory

http://www.securityfocus.com/bid/65869

KEV Catalog EPSS Scores Vendors All CVEs