Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2013-7030
HistoryDec 12, 2013 - 5:55 p.m.

Design/Logic Flaw

2013-12-1217:55:00
PRIOn knowledge base
www.prio-n.com
4

6.8 Medium

AI Score

Confidence

Low

0.563 Medium

EPSS

Percentile

97.7%

JSON

The TFTP service in Cisco Unified Communications Manager (aka CUCM or Unified CM) allows remote attackers to obtain sensitive information from a phone via an RRQ operation, as demonstrated by discovering a cleartext UseUserCredential field in an SPDefault.cnf.xml file. NOTE: the vendor reportedly disputes the significance of this report, stating that this is an expected default behavior, and that the product’s documentation describes use of the TFTP Encrypted Config option in addressing this issue

Related

nvd 1
cve 1
cvelist 1
vulnrichment 1
nvd
nvd
CVE-2013-7030
2013-12-12 17:55:03
cve
cve
CVE-2013-7030
2013-12-12 17:55:03
cvelist
cvelist
CVE-2013-7030
2013-12-12 17:00:00
vulnrichment
vulnrichment
CVE-2013-7030
2013-12-12 17:00:00

6.8 Medium

AI Score

Confidence

Low

0.563 Medium

EPSS

Percentile

97.7%

JSON
Related for PRION:CVE-2013-7030
nvd1cve1cvelist1vulnrichment1