CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-3471

The captive portal application in Cisco Identity Services Engine (ISE) allows remote attackers to discover cleartext usernames and passwords by leveraging unspecified use of hidden form fields in an HTML document, aka Bug ID CSCug02515.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.5%

CVSS Severity

CVSS v2 Score 4.3

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3471
http://tools.cisco.com/security/center/viewAlert.x?alertId=30524
http://www.securitytracker.com/id/1028965
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3471
http://tools.cisco.com/security/center/viewAlert.x?alertId=30524
http://www.securitytracker.com/id/1028965

Products affected by CVE-2013-3471

Cisco » Identity Services Engine Software » Version: N/A

cpe:2.3:a:cisco:identity_services_engine_software:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-3471

Products

Pricing

Contact Us