Lucene search

[email protected]NVD:CVE-2013-3438

HistoryJul 24, 2013 - 12:01 p.m.

CVE-2013-3438

2013-07-2412:01:57

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

58.8%

JSON

The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, aka Bug ID CSCuh86385.

Affected configurations

Nvd

Node

ciscounified_meetingplace_web_conferencingMatch-

VendorProductVersionCPE
ciscounified_meetingplace_web_conferencing-cpe:2.3:a:cisco:unified_meetingplace_web_conferencing:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	unified_meetingplace_web_conferencing	-	cpe:2.3:a:cisco:unified_meetingplace_web_conferencing:-:::::::*

References

osvdb.org/95583

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3438

tools.cisco.com/security/center/viewAlert.x?alertId=30186

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

58.8%

JSON

Related for NVD:CVE-2013-3438

cvelist1 prion1 cisco1 cve1