CVE-2013-3471

Sažetak

The captive portal application in Cisco Identity Services Engine (ISE) allows remote attackers to discover cleartext usernames and passwords by leveraging unspecified use of hidden form fields in an HTML document, aka Bug ID CSCug02515.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3471
http://tools.cisco.com/security/center/viewAlert.x?alertId=30524
http://www.securitytracker.com/id/1028965

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

04-11-2016 - 19:52

Objavljeno

29-08-2013 - 12:07