Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveCiscoCVE-2013-3431
HistoryJul 25, 2013 - 3:53 p.m.

CVE-2013-3431

2013-07-2515:53:16
CWE-287
cisco
web.nvd.nist.gov
32
cisco
vsm
security
authentication
remote access
vulnerability
cve-2013-3431
nvd
cscsv40169

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

70.6%

JSON

Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv40169.

Affected configurations

Nvd
Node
ciscovideo_surveillance_managerRange6.3.3
OR
ciscovideo_surveillance_managerMatch1.1.0
OR
ciscovideo_surveillance_managerMatch1.2.1
OR
ciscovideo_surveillance_managerMatch2.0.0
OR
ciscovideo_surveillance_managerMatch2.1
OR
ciscovideo_surveillance_managerMatch2.1.2
OR
ciscovideo_surveillance_managerMatch2.1.3
OR
ciscovideo_surveillance_managerMatch2.1.4
OR
ciscovideo_surveillance_managerMatch2.1.6
OR
ciscovideo_surveillance_managerMatch2.1.7
OR
ciscovideo_surveillance_managerMatch2.3.0
OR
ciscovideo_surveillance_managerMatch2.3.1
OR
ciscovideo_surveillance_managerMatch4.0.1
OR
ciscovideo_surveillance_managerMatch4.2.0
OR
ciscovideo_surveillance_managerMatch4.2.1
OR
ciscovideo_surveillance_managerMatch6.3
OR
ciscovideo_surveillance_managerMatch6.3.1
OR
ciscovideo_surveillance_managerMatch6.3.2
OR
ciscovideo_surveillance_managerMatch6.3.2mr1
OR
ciscovideo_surveillance_managerMatch6.3.2mr2
OR
ciscovideo_surveillance_managerMatch6.3.2mr3
VendorProductVersionCPE
ciscovideo_surveillance_manager4.2.0cpe:/a:cisco:video_surveillance_manager:4.2.0:::
ciscovideo_surveillance_managercpe:/a:cisco:video_surveillance_manager::::
ciscovideo_surveillance_manager4.0.1cpe:/a:cisco:video_surveillance_manager:4.0.1:::
ciscovideo_surveillance_manager6.3.2cpe:/a:cisco:video_surveillance_manager:6.3.2:mr2::
ciscovideo_surveillance_manager6.3.2cpe:/a:cisco:video_surveillance_manager:6.3.2:mr1::
ciscovideo_surveillance_manager6.3.1cpe:/a:cisco:video_surveillance_manager:6.3.1:::
ciscovideo_surveillance_manager2.1cpe:/a:cisco:video_surveillance_manager:2.1:::
ciscovideo_surveillance_manager1.1.0cpe:/a:cisco:video_surveillance_manager:1.1.0:::
ciscovideo_surveillance_manager2.3.0cpe:/a:cisco:video_surveillance_manager:2.3.0:::
ciscovideo_surveillance_manager6.3.2cpe:/a:cisco:video_surveillance_manager:6.3.2:::
Rows per page:
1-10 of 211

Related

prion 1
nvd 1
cvelist 1
nessus 1
thn 1
securityvulns 1
cisco 1
openvas 1
prion
prion
Authentication flaw
2013-07-25 15:53:00
nvd
nvd
CVE-2013-3431
2013-07-25 15:53:16
cvelist
cvelist
CVE-2013-3431
2013-07-25 15:00:00
nessus
nessus
Cisco Video Surveillance Manager Multiple Vulnerabilities (cisco-sa-20130724-vsm)
2013-09-12 00:00:00
thn
thn
Cisco 'Knowingly' Sold Hackable Video Surveillance System to U.S. Government
2019-08-01 09:13:00
securityvulns
securityvulns
Cisco Video Surveillance Manager multiple security vulnerabilities
2013-07-29 00:00:00
cisco
cisco
Multiple Vulnerabilities in the Cisco Video Surveillance Manager
2013-07-24 16:00:00
openvas
openvas
Cisco Video Surveillance Operations Manager Multiple Vulnerabilities (cisco-sa-20130724-vsm) - Active Check
2013-03-14 00:00:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

70.6%

JSON
Related for CVE-2013-3431
prion1nvd1cvelist1nessus1thn1securityvulns1cisco1openvas1