CVE-2013-1139

2013-02-2700:00:00

cisco

www.cve.org

cisco cloud portal

nsapi

privilege check

bypass

cve-2013-1139

AI Score

5.7

Confidence

Low

EPSS

0.001

Percentile

41.7%

JSON

The nsAPI interface in Cisco Cloud Portal 9.1 SP1 and SP2, and 9.3 through 9.3.2, does not properly check privileges, which allows remote authenticated users to obtain sensitive information via a crafted URL, aka Bug ID CSCud81134.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1139

tools.cisco.com/security/center/viewAlert.x?alertId=28387