Lucene search
CiscoCVE-2013-1214HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-1214
2022-10-0316:14:48
CWE-264
cisco
web.nvd.nist.gov
31
cve
2013
1214
cisco
unified contact center express
unified ccx
scripts
remote attackers
privileges
cscuf77546
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
55.9%
The scripts editor in Cisco Unified Contact Center Express (aka Unified CCX) does not properly manage privileges for anonymous logins, which allows remote attackers to read arbitrary scripts by visiting the scripts repository directory, aka Bug ID CSCuf77546.
Affected configurations
Node
ciscounified_contact_center_express_editor_softwareMatch-
ciscounified_contact_center_express_editor_softwareMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_contact_center_express_editor_software | - | cpe:/a:cisco:unified_contact_center_express_editor_software:-::: |
Related
cisco
cisco
cvelist
cvelist
CVE-2013-1214
2022-10-03 16:14:48
nvd
nvd
CVE-2013-1214
2013-04-24 10:28:37
prion
prion
Design/Logic Flaw
2013-04-24 10:28:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
55.9%
Related for CVE-2013-1214