CVE-2013-3473

The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before 9.1.1 does not properly determine the existence of an authenticated session, which allows remote attackers to discover usernames and passwords via an HTTP request, aka Bug ID CSCud32600.

Data: Cisco advisories 1 day ago · Cisco CSAF 4 hours ago · NVD CVEs 7 hours ago · NVD CPEs 1 day ago · CISA KEV 1 day ago · EPSS 1 day ago

Severity	HIGH
CVSS	7.8
EPSS	0.27% EPSS medium
CWE	CWE-287
KEV
Published	12 years ago
Modified	3 weeks ago

Products with public affected evidence

Product	Advisory	Affected evidence
Cisco Prime Central for Hosted Collaboration Solution	cisco-sa-20130918-pc	structured affected CSAF product_status