CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-1140

The XML parser in Cisco Security Monitoring, Analysis, and Response System (MARS) allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCue55093.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.4%

CVSS Severity

CVSS v2 Score 4.3

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1140
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1140

Products affected by CVE-2013-1140

Cisco » Security Monitoring Analysis And Response System » Version: N/A

cpe:2.3:h:cisco:security_monitoring_analysis_and_response_system:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1140

Products

Pricing

Contact Us