Published: 20/09/2013 Updated: 23/09/2013

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N

Subscribe to Prime Central For Hosted Collaboration Solution Assurance

The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance prior to 9.1.1 does not properly determine the existence of an authenticated session, which allows remote malicious users to discover usernames and passwords via an HTTP request, aka Bug ID CSCud32600.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco prime central for hosted collaboration solution assurance 9.0
cisco prime central for hosted collaboration solution assurance 1.0.1
cisco prime central for hosted collaboration solution assurance
cisco prime central for hosted collaboration solution assurance 8.6
cisco prime central for hosted collaboration solution assurance 1.0

A vulnerability in the web framework of Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance could allow an unauthenticated, remote attacker to access sensitive information on the system The vulnerability is due to improper user authentication and inadequate session management An unauthenticated, remote attacker could exploit th ...

CWE-287 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-pc https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-pc

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-3473

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect