CVE-2013-3469
Cisco Mobility Services Engine - Unauthenticated Sensitive Information Exposure via Oracle SSL Service Misconfiguration
Title source: llmDescription
Cisco Mobility Services Engine does not properly set up the Oracle SSL service, which allows remote attackers to obtain an unauthenticated session to the database-replication port, and consequently obtain sensitive information, via an SSL connection, aka Bug ID CSCue50794.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=30617
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1028972
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3469
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/62091
Scores
EPSS
0.0179
EPSS Percentile
75.8%
Details
CWE
CWE-200
Status
published
Products (1)
cisco/mobility_services_engine
Published
Sep 04, 2013
Tracked Since
Feb 18, 2026