exploitDog

CVE-2013-1214

Опубликовано: 24 апр. 2013

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The scripts editor in Cisco Unified Contact Center Express (aka Unified CCX) does not properly manage privileges for anonymous logins, which allows remote attackers to read arbitrary scripts by visiting the scripts repository directory, aka Bug ID CSCuf77546.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1214
Vendor Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1214
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:cisco:unified_contact_center_express_editor_software:-:*:*:*:*:*:*:*

cpe:2.3:a:cisco:unified_contact_center_express_editor_software:-:*:*:*:*:*:*:*

EPSS

Процентиль: 48%

0.0025

Низкий

5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-r2vv-mwrh-7wrp

github

больше 3 лет назад

The scripts editor in Cisco Unified Contact Center Express (aka Unified CCX) does not properly manage privileges for anonymous logins, which allows remote attackers to read arbitrary scripts by visiting the scripts repository directory, aka Bug ID CSCuf77546.

EPSS

Процентиль: 48%

0.0025

Низкий

5 Medium

CVSS2

Дефекты

CWE-264