Lucene search

[email protected]CVE-2013-1232

HistoryMay 04, 2013 - 3:24 a.m.

CVE-2013-1232

2013-05-0403:24:00

CWE-20

[email protected]

web.nvd.nist.gov

cisco

webex

node

http

implementation

vulnerability

cve-2013-1232

nvd

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

58.6%

JSON

The HTTP implementation in Cisco WebEx Node for MCS, WebEx Meetings Server, and WebEx Node for ASR 1000 Series allows remote attackers to read the contents of uninitialized memory locations via a crafted request, aka Bug IDs CSCue36672, CSCue31363, CSCuf17466, and CSCug61252.

CPENameOperatorVersion
cisco:webex_node_for_asr_1000_seriescisco webex node for asr 1000 serieseq-
cisco:webex_meetings_servercisco webex meetings servereq-
cisco:webex_node_for_mcscisco webex node for mcseq-

CPE	Name	Operator	Version
cisco:webex_node_for_asr_1000_series	cisco webex node for asr 1000 series	eq	-
cisco:webex_meetings_server	cisco webex meetings server	eq	-
cisco:webex_node_for_mcs	cisco webex node for mcs	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1232

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

58.6%

JSON

Related for CVE-2013-1232

prion1 seebug1 cvelist1