CyberSec.Space Logo
CVEブラウザに戻る

CVE-2013-3431

HIGH
7.8
CVSS Severity Score
EPSS Score0.1890%
EPSS Percentile39.81th
Published2013年7月25日
Last Modified2026年4月29日

Vulnerability Description

Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv40169.

Affected Platforms (CPE)

📦
Cisco

Video Surveillance Manager

<= 6.3.3
📦
Cisco

Video Surveillance Manager

= 1.1.0
📦
Cisco

Video Surveillance Manager

= 1.2.1
📦
Cisco

Video Surveillance Manager

= 2.0.0
📦
Cisco

Video Surveillance Manager

= 2.1
📦
Cisco

Video Surveillance Manager

= 2.1.2
📦
Cisco

Video Surveillance Manager

= 2.1.3
📦
Cisco

Video Surveillance Manager

= 2.1.4
📦
Cisco

Video Surveillance Manager

= 2.1.6
📦
Cisco

Video Surveillance Manager

= 2.1.7
📦
Cisco

Video Surveillance Manager

= 2.3.0
📦
Cisco

Video Surveillance Manager

= 2.3.1
📦
Cisco

Video Surveillance Manager

= 4.0.1
📦
Cisco

Video Surveillance Manager

= 4.2.0
📦
Cisco

Video Surveillance Manager

= 4.2.1
📦
Cisco

Video Surveillance Manager

= 6.3
📦
Cisco

Video Surveillance Manager

= 6.3.1
📦
Cisco

Video Surveillance Manager

= 6.3.2
📦
Cisco

Video Surveillance Manager

= 6.3.2
📦
Cisco

Video Surveillance Manager

= 6.3.2
📦
Cisco

Video Surveillance Manager

= 6.3.2

References & Advisories

🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130724-vsm
🔗 http://www.securityfocus.com/bid/61431
🔗 http://www.securitytracker.com/id/1028827
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/85945
🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130724-vsm
🔗 http://www.securityfocus.com/bid/61431
🔗 http://www.securitytracker.com/id/1028827
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/85945

関連する脆弱性情報

CVE-2018-154279.8

A vulnerability in Cisco Video Surveillance Manager (VSM) Software running on certain Cisco Connected Safety and Security Unified ...

CVE-2013-34309.0

Cisco Video Surveillance Manager (VSM) before 7.0.0 allows remote attackers to obtain sensitive configuration, archive, and log in...

CVE-2013-34297.8

Multiple directory traversal vulnerabilities in Cisco Video Surveillance Manager (VSM) before 7.0.0 allow remote attackers to read...

CVE-2009-20457.8

The Cisco Video Surveillance Stream Manager firmware before 5.3, as used on Cisco Video Surveillance Services Platforms and Video ...