Lucene search
CiscoCVE-2013-5554HistoryNov 08, 2013 - 4:47 a.m.
CVE-2013-5554
2013-11-0804:47:23
CWE-22
cisco
web.nvd.nist.gov
26
cve-2013-5554
directory traversal
web management interface
cisco
waas mobile
remote attack
vulnerability
security
bug id cscuh69773
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.039
Percentile
92.1%
Directory traversal vulnerability in the web-management interface in the server in Cisco Wide Area Application Services (WAAS) Mobile before 3.5.5 allows remote attackers to upload and execute arbitrary files via a crafted POST request, aka Bug ID CSCuh69773.
Affected configurations
Node
ciscowide_area_application_services_mobileRange≤3.5.4
ORciscowide_area_application_services_mobileMatch3.3.1
ORciscowide_area_application_services_mobileMatch3.3.4
ORciscowide_area_application_services_mobileMatch3.4
ORciscowide_area_application_services_mobileMatch3.4.1
ORciscowide_area_application_services_mobileMatch3.4.2
ORciscowide_area_application_services_mobileMatch3.5.0
ORciscowide_area_application_services_mobileMatch3.5.1
ORciscowide_area_application_services_mobileMatch3.5.2
ORciscowide_area_application_services_mobileMatch3.5.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | wide_area_application_services_mobile | * | cpe:2.3:a:cisco:wide_area_application_services_mobile:*:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.3.1 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.3.1:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.3.4 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.3.4:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.4 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.4:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.4.1 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.4.1:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.4.2 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.4.2:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.5.0 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.5.0:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.5.1 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.5.1:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.5.2 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.5.2:*:*:*:*:*:*:* |
| cisco | wide_area_application_services_mobile | 3.5.3 | cpe:2.3:a:cisco:wide_area_application_services_mobile:3.5.3:*:*:*:*:*:*:* |
Related
securityvulns
securityvulns
Cisco WAAS directory traversal
2013-11-18 00:00:00
nvd
nvd
CVE-2013-5554
2013-11-08 04:47:23
zdi
zdi
nessus
nessus
Cisco WAAS Mobile Server < 3.5.5 Remote Code Execution
2014-01-07 00:00:00
cisco
cisco
Cisco WAAS Mobile Remote Code Execution Vulnerability
2013-11-06 16:00:00
prion
prion
Directory traversal
2013-11-08 04:47:00
cvelist
cvelist
CVE-2013-5554
2013-11-08 02:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.039
Percentile
92.1%
Related for CVE-2013-5554