CVE-2014-3314

Cisco AnyConnect on Android and OS X does not properly verify the host type, which allows remote attackers to spoof authentication forms and possibly capture credentials via unspecified vectors, aka Bug IDs CSCuo24931 and CSCuo24940.
Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:android:*:*

Configuration 2 (hide)

cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:macos:*:*

History

No history.

Information

Published : 2015-01-14 19:59

Updated : 2024-02-04 18:35


NVD link : CVE-2014-3314

Mitre link : CVE-2014-3314

CVE.ORG link : CVE-2014-3314


JSON object : View

Products Affected

cisco

  • anyconnect_secure_mobility_client
CWE
CWE-20

Improper Input Validation