CVE-2013-1192
Cisco Adaptive Security Appliance Device Manager - Remote Code Execution via Crafted JNLP File
Title source: llmDescription
The JAR files on Cisco Device Manager for Cisco MDS 9000 devices before 5.2.8, and Cisco Device Manager for Cisco Nexus 5000 devices, allow remote attackers to execute arbitrary commands on Windows client machines via a crafted element-manager.jnlp file, aka Bug IDs CSCty17417 and CSCty10802.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-fmdm
Scores
EPSS
0.0241
EPSS Percentile
82.1%
Details
CWE
CWE-20
Status
published
Products (24)
cisco/adaptive_security_appliance_device_manager
5.0.1
cisco/adaptive_security_appliance_device_manager
5.0.2
cisco/adaptive_security_appliance_device_manager
5.0.4
cisco/adaptive_security_appliance_device_manager
5.0.5
cisco/adaptive_security_appliance_device_manager
5.0.6
cisco/adaptive_security_appliance_device_manager
5.0.7
cisco/adaptive_security_appliance_device_manager
5.0.8
cisco/adaptive_security_appliance_device_manager
5.0.9
cisco/adaptive_security_appliance_device_manager
5.1.1
cisco/adaptive_security_appliance_device_manager
5.1.2
... and 14 more
Published
Apr 25, 2013
Tracked Since
Feb 18, 2026