cvelist/2014/0xxx/CVE-2014-0742.json

{
    "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2014-0742",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045",
                "refsource": "CONFIRM",
                "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33045"
            },
            {
                "name": "20140225 Cisco Unified Communications Manager CAPF CSR Arbitrary File Read/Write Vulnerability",
                "refsource": "CISCO",
                "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0742"
            },
            {
                "name": "1029843",
                "refsource": "SECTRACK",
                "url": "http://www.securitytracker.com/id/1029843"
            }
        ]
    }
}