CVE-2013-5490

2013-09-2310:18:00

CWE-200

[email protected]

web.nvd.nist.gov

cisco

prime

data center network manager

dcnm

xxe

vulnerability

cve-2013-5490

nvd

6.8 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.003 Low

EPSS

Percentile

68.2%

JSON

Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary text files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCud80148.

CPENameOperatorVersion
cisco:prime_data_center_network_managercisco prime data center network managereq6.1\(1a\)
cisco:prime_data_center_network_managercisco prime data center network managerle6.1\(1b\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2e\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.0\(3\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2a\)
cisco:prime_data_center_network_managercisco prime data center network managereq4.1\(3\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.1\(1\)
cisco:prime_data_center_network_managercisco prime data center network managereq4.1\(2\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2\)
cisco:prime_data_center_network_managercisco prime data center network managereq5.2\(2b\)

CPE	Name	Operator	Version
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	6.1\(1a\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	le	6.1\(1b\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2e\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.0\(3\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2a\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	4.1\(3\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.1\(1\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	4.1\(2\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	5.2\(2b\)