CVE-2013-3430

Cisco Video Surveillance Manager < 6.3.3 - Authentication Bypass

Title source: rule

Description

Cisco Video Surveillance Manager (VSM) before 7.0.0 allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv37288.

Exploits (1)

exploitdb WORKING POC

webappsjsp

https://www.exploit-db.com/exploits/24786

View Code ZIP pw:eip

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/61432

Vendor Advisory vendor-advisory x_refsource_cisco

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130724-vsm

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/85946

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1028827

Scores

EPSS 0.0219

EPSS Percentile 84.5%

Details

CWE

CWE-287

Status published

Products (18)

cisco/video_surveillance_manager 1.1.0

cisco/video_surveillance_manager 1.2.1

cisco/video_surveillance_manager 2.0.0

cisco/video_surveillance_manager 2.1

cisco/video_surveillance_manager 2.1.2

cisco/video_surveillance_manager 2.1.3

cisco/video_surveillance_manager 2.1.4

cisco/video_surveillance_manager 2.1.6

cisco/video_surveillance_manager 2.1.7

cisco/video_surveillance_manager 2.3.0

... and 8 more

Published Jul 25, 2013

Tracked Since Feb 18, 2026