NVD

Id
37467  
Name
CVE-2013-1223  
Description
The log viewer in Cisco Unified Customer Voice Portal (CVP) Software before 9.0.1 ES 11 does not properly validate an unspecified parameter, which allows remote attackers to read arbitrary files via a crafted (1) HTTP or (2) HTTPS request, aka Bug ID CSCub38372.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:N/A:N)  
Pub Date
2017-01-18  
Published
2013-05-09  
Modified Date
2013-05-09  
Seq
2013-1223  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
190940 37467 CVE-2013-1223 20130508 Multiple Vulnerabilities in Cisco Unified Customer Voice Portal Software  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
21039 JVNDB-2013-002614 Cisco Unified Customer Voice Portal のログビューアにおける任意のファイルを読まれる脆弱性 Cisco Unified Customer Voice Portal (CVP) のログビューアは、不特定のパラメータを適切に検証しないため、任意のファイルを読まれる脆弱性が存在します。 CVE-2013-1223 61165 CVE-2013-1223 37467 7.8 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-002614.html 2013-05-08 2013-05-10 View