CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-1348

Cisco Wide Area Application Services (WAAS) appliances with software 4.4, 5.0, and 5.1 include a one-way hash of a password within output text, which might allow remote attackers to obtain sensitive information via a brute-force attack on the hash string, aka Bug ID CSCty17279.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.3%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v501/release/notes/ws501xrn.pdf
http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v501/release/notes/ws501xrn.pdf

Products affected by CVE-2012-1348

Cisco » Wide Area Application Services » Version: 4.4

cpe:2.3:a:cisco:wide_area_application_services:4.4
Cisco » Wide Area Application Services » Version: 5.0

cpe:2.3:a:cisco:wide_area_application_services:5.0
Cisco » Wide Area Application Services » Version: 5.1

cpe:2.3:a:cisco:wide_area_application_services:5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-1348

Products

Pricing

Contact Us