CVE-2013-3431

Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv40169.

Severity	HIGH
CVSS	7.8
CWE	CWE-287
KEV
Published	12 years ago
Modified	2 weeks ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-20130724-vsm
Cisco Nexus Dashboard	cisco-sa-20130724-vsm
Cisco MDS 9000 Family of Multilayer Switches	cisco-sa-20130724-vsm
Cisco Video Surveillance Operations Manager Software	cisco-sa-20130724-vsm
Cisco Video Surveillance Manager	cisco-sa-20130724-vsm