Lucene search

[email protected]CVE-2013-1132

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-1132

2022-10-0316:14:49

CWE-79

[email protected]

web.nvd.nist.gov

cisco

unified communications

domain manager

xss

csrf

nvd

cve-2013-1132

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

44.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Communications Domain Manager allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) IptAccountMgmt, (2) IptFeatureConfigTemplateMgmt, (3) IptFeatureDisplayPolicyMgmt, or (4) IptProviderMgmt page, aka Bug IDs CSCud69972, CSCud70193, and CSCud70261.

Affected configurations

NVD

Node

ciscounified_communications_domain_managerMatch-

CPENameOperatorVersion
cisco:unified_communications_domain_managercisco unified communications domain managereq-

CPE	Name	Operator	Version
cisco:unified_communications_domain_manager	cisco unified communications domain manager	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1132

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

44.0%

JSON

Related for CVE-2013-1132

cisco1 cvelist1 prion1 nvd1