CVE-2013-3397
Cisco Unified Communications Manager - Cross-Site Request Forgery in Unified Serviceability
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in the Unified Serviceability component in Cisco Unified Communications Manager (CUCM) allows remote attackers to hijack the authentication of arbitrary users for requests that perform Unified Serviceability actions, aka Bug ID CSCuh10298.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3397
Scores
EPSS
0.0058
EPSS Percentile
43.4%
Details
CWE
CWE-352
Status
published
Products (1)
cisco/unified_communications_manager
Published
Jun 26, 2013
Tracked Since
Feb 18, 2026