CVE-2013-1192

Cisco Adaptive Security Appliance Device Manager - Remote Code Execution via Crafted JNLP File

Title source: llm
STIX 2.1

Description

The JAR files on Cisco Device Manager for Cisco MDS 9000 devices before 5.2.8, and Cisco Device Manager for Cisco Nexus 5000 devices, allow remote attackers to execute arbitrary commands on Windows client machines via a crafted element-manager.jnlp file, aka Bug IDs CSCty17417 and CSCty10802.

References (1)

Core 1
Core References

Scores

EPSS 0.0241
EPSS Percentile 82.1%

Details

CWE
CWE-20
Status published
Products (24)
cisco/adaptive_security_appliance_device_manager 5.0.1
cisco/adaptive_security_appliance_device_manager 5.0.2
cisco/adaptive_security_appliance_device_manager 5.0.4
cisco/adaptive_security_appliance_device_manager 5.0.5
cisco/adaptive_security_appliance_device_manager 5.0.6
cisco/adaptive_security_appliance_device_manager 5.0.7
cisco/adaptive_security_appliance_device_manager 5.0.8
cisco/adaptive_security_appliance_device_manager 5.0.9
cisco/adaptive_security_appliance_device_manager 5.1.1
cisco/adaptive_security_appliance_device_manager 5.1.2
... and 14 more
Published Apr 25, 2013
Tracked Since Feb 18, 2026