CVE-2012-1348
Cisco Wide Area Application Services 4.4, 5.0, 5.1 - Password Hash Exposure via Output Text
Title source: llmDescription
Cisco Wide Area Application Services (WAAS) appliances with software 4.4, 5.0, and 5.1 include a one-way hash of a password within output text, which might allow remote attackers to obtain sensitive information via a brute-force attack on the hash string, aka Bug ID CSCty17279.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v501/release/notes/ws501xrn.pdf
Scores
EPSS
0.0119
EPSS Percentile
64.1%
Details
CWE
CWE-200
Status
published
Products (3)
cisco/wide_area_application_services
4.4
cisco/wide_area_application_services
5.0
cisco/wide_area_application_services
5.1
Published
Aug 06, 2012
Tracked Since
Feb 18, 2026