NVD

Id
39270  
Name
CVE-2013-3473  
Description
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before 9.1.1 does not properly determine the existence of an authenticated session, which allows remote attackers to discover usernames and passwords via an HTTP request, aka Bug ID CSCud32600.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:N/A:N)  
Pub Date
2017-01-18  
Published
2013-09-20  
Modified Date
2013-09-23  
Seq
2013-3473  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
200515 39270 CVE-2013-3473 20130918 Cisco Prime Central for Hosted Collaboration Solution Assurance Unauthenticated Username and Password Enumeration Vulnerability  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22701 JVNDB-2013-004276 Cisco Prime Central for Hosted Collaboration Solution Assurance の Web フレームワークにおけるユーザ名およびパスワードを取得される脆弱性 Cisco Prime Central for Hosted Collaboration Solution(HCS)Assurance の Web フレームワークは、認証されたセッションの存在を適切に判定しないため、ユーザ名およびパスワードを取得される脆弱性が存在します。 CVE-2013-3473 63415 CVE-2013-3473 39270 7.8 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-004276.html 2013-09-18 2013-09-25 View