Vulnerability Details CVE-2013-3443
The web service framework in Cisco WAAS Software 4.x and 5.x before 5.0.3e, 5.1.x before 5.1.1c, and 5.2.x before 5.2.1 in a Central Manager (CM) configuration allows remote attackers to execute arbitrary code via a crafted POST request, aka Bug ID CSCuh26626.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.079
EPSS Ranking 91.6%
CVSS Severity
CVSS v2 Score 10.0
References
- http://osvdb.org/95877
- http://secunia.com/advisories/54367
- http://secunia.com/advisories/54372
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-waascm
- http://www.securityfocus.com/bid/61542
- http://www.securitytracker.com/id/1028851
- https://exchange.xforce.ibmcloud.com/vulnerabilities/86121
- http://osvdb.org/95877
- http://secunia.com/advisories/54367
- http://secunia.com/advisories/54372
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130731-waascm
- http://www.securityfocus.com/bid/61542
- http://www.securitytracker.com/id/1028851
- https://exchange.xforce.ibmcloud.com/vulnerabilities/86121
Products affected by CVE-2013-3443
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.1
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.11
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.13
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.17
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.19
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.21
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.23
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.25
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.27
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.3
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.5
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.7
-
cpe:2.3:a:cisco:wide_area_application_services:4.0.9
-
cpe:2.3:a:cisco:wide_area_application_services:4.1.1
-
cpe:2.3:a:cisco:wide_area_application_services:4.1.3
-
cpe:2.3:a:cisco:wide_area_application_services:4.1.5
-
cpe:2.3:a:cisco:wide_area_application_services:4.1.7
-
cpe:2.3:a:cisco:wide_area_application_services:4.2.1
-
cpe:2.3:a:cisco:wide_area_application_services:4.2.3
-
cpe:2.3:a:cisco:wide_area_application_services:4.3.1
-
cpe:2.3:a:cisco:wide_area_application_services:4.3.3
-
cpe:2.3:a:cisco:wide_area_application_services:4.3.5
-
cpe:2.3:a:cisco:wide_area_application_services:4.4.1
-
cpe:2.3:a:cisco:wide_area_application_services:4.4.3
-
cpe:2.3:a:cisco:wide_area_application_services:4.4.5
-
cpe:2.3:a:cisco:wide_area_application_services:4.4.7
-
cpe:2.3:a:cisco:wide_area_application_services:5.0.1
-
cpe:2.3:a:cisco:wide_area_application_services:5.0.3
-
cpe:2.3:a:cisco:wide_area_application_services:5.1.1
-
cpe:2.3:a:cisco:wide_area_application_services:5.2