CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-3810

A vulnerability in the web framework of Cisco Prime Service Catalog could allow an authenticated, remote attacker to conduct a web URL redirect attack against a user who is logged in to an affected system. More Information: CSCvb21745. Known Affected Releases: 10.0_R2_tanggula.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.9%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 4.9

References

http://www.securityfocus.com/bid/95947
http://www.securitytracker.com/id/1037772
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc
http://www.securityfocus.com/bid/95947
http://www.securitytracker.com/id/1037772
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc

Products affected by CVE-2017-3810

Cisco » Prime Service Catalog » Version: 10.0(r2)_base

cpe:2.3:a:cisco:prime_service_catalog:10.0(r2)_base

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-3810

Products

Pricing

Contact Us