CVE-2013-3473
Cisco Prime Central for Hosted Collaboration Solution Assurance < 9.1.1 - Credential Exposure
Title source: llmDescription
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before 9.1.1 does not properly determine the existence of an authenticated session, which allows remote attackers to discover usernames and passwords via an HTTP request, aka Bug ID CSCud32600.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-pc
Scores
EPSS
0.0153
EPSS Percentile
71.5%
Details
CWE
CWE-287
Status
published
Products (5)
cisco/prime_central_for_hosted_collaboration_solution_assurance
1.0
cisco/prime_central_for_hosted_collaboration_solution_assurance
1.0.1
cisco/prime_central_for_hosted_collaboration_solution_assurance
8.6
cisco/prime_central_for_hosted_collaboration_solution_assurance
9.0
cisco/prime_central_for_hosted_collaboration_solution_assurance
< 9.1
Published
Sep 20, 2013
Tracked Since
Feb 18, 2026