CVE-2013-3430

Cisco Video Surveillance Manager < 6.3.3 - Authentication Bypass

Title source: rule

Description

Cisco Video Surveillance Manager (VSM) before 7.0.0 allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv37288.

Exploits (1)

exploitdb WORKING POC

webappsjsp

https://www.exploit-db.com/exploits/24786

View on exploitdb

References (4)

[Vendor Advisory] http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130724-vsm

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/61432

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/85946

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1028827

Scores

EPSS 0.0219

EPSS Percentile 84.2%

Classification

CWE

CWE-287

Status draft

Affected Products (21)

cisco/video_surveillance_manager < 6.3.3

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

cisco/video_surveillance_manager

... and 6 more

Timeline

Published Jul 25, 2013

Tracked Since Feb 18, 2026