Cisco Security Advisories — July 2014 — Cisco Security Advisories

Cisco Security Advisories · July 2014 — Cisco Security Advisories

2 advisories 4 CVEs 1 EXPLOITED

PSIRT bulletins (cisco-sa-*) and cross-source CVEs naming Cisco for 2014-07. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.

Back to archive Open Console

Advisories

cisco-sa-20140709-struts2

Cisco PSIRTExploited2014-07-09

Apache Struts 2 Command Execution Vulnerability in Multiple Cisco Products

CVEs:CVE-2010-1870

Affected products

Product	Status	Vendor	Package	Ecosystem
CVRFPID-111903	affected	Cisco	—	—
CVRFPID-114987	affected	Cisco	—	—
CVRFPID-195235	affected	Cisco	—	—
CVRFPID-92631	affected	Cisco	—	—

Upstream advisory

cisco-sa-20140702-cucdm

Cisco PSIRT2014-07-02

Multiple Vulnerabilities in Cisco Unified Communications Domain Manager

CVEs:CVE-2014-2197 CVE-2014-2198 CVE-2014-3300

Affected products

Product	Status	Vendor	Package	Ecosystem
CVRFPID-188989	affected	Cisco	—	—
CVRFPID-201010	affected	Cisco	—	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console