CVE-2013-3406

Cisco Services Portal 9.4(1) - Authenticated Arbitrary File Read via Files Available for Download

Title source: llm
STIX 2.1

Description

The "Files Available for Download" implementation in the Cisco Intelligent Automation for Cloud component in Cisco Services Portal 9.4(1) allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCug65687.

References (2)

Core 2
Core References

Scores

EPSS 0.0113
EPSS Percentile 62.5%

Details

CWE
CWE-20
Status published
Products (1)
cisco/service_portal 9.4.1
Published Nov 18, 2013
Tracked Since Feb 18, 2026