exploitDog

CVE-2013-1170

Опубликовано: 11 апр. 2013

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The Cisco Prime Network Control System (NCS) appliance with software before 1.1.1.24 has a default password for the database user account, which makes it easier for remote attackers to change the configuration or cause a denial of service (service disruption) via unspecified vectors, aka Bug ID CSCtz30468.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-ncs
Vendor Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-ncs
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:cisco:prime_network_control_system_software:1.1:*:*:*:*:*:*:*

cpe:2.3:a:cisco:prime_network_control_system:-:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.0046

Низкий

7.5 High

CVSS2

Дефекты

CWE-255

Связанные уязвимости

GHSA-767x-9fv7-7f5r

github

больше 3 лет назад

The Cisco Prime Network Control System (NCS) appliance with software before 1.1.1.24 has a default password for the database user account, which makes it easier for remote attackers to change the configuration or cause a denial of service (service disruption) via unspecified vectors, aka Bug ID CSCtz30468.

EPSS

Процентиль: 64%

0.0046

Низкий

7.5 High

CVSS2

Дефекты

CWE-255