Database Credential Vulnerability in Cisco Prime Network Control System
CVE-2013-1170

Currently unrated

Key Information:

Vendor: Cisco
Status: Prime Network Control System Software; Prime Network Control System
Vendor: CVE Published:; 11 April 2013

What is CVE-2013-1170?

The Cisco Prime Network Control System (NCS) appliance prior to version 1.1.1.24 features default passwords for its database user accounts. This vulnerability allows remote attackers to exploit these credentials, potentially leading to unauthorized configuration changes or causing disruptions in service availability. Attackers can leverage this weakness through various unspecified methods, which presents a significant security risk to affected installations.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 11, 2013