CVE-2013-3450
Cisco Unified Communications Manager - Cross-Site Request Forgery via User WebDialer Page
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in the User WebDialer page in Cisco Unified Communications Manager (Unified CM) allows remote attackers to hijack the authentication of arbitrary users for requests that dial calls, aka Bug ID CSCui13028.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3450
Scores
EPSS
0.0058
EPSS Percentile
43.4%
Details
CWE
CWE-352
Status
published
Products (1)
cisco/unified_communications_manager
Published
Aug 05, 2013
Tracked Since
Feb 18, 2026