CVE-2013-3395

Currently unrated

Key Information:

Vendor: Cisco
Status: Content Security Management Appliance; Web Security Appliance; Email Security Appliance Firmware
Vendor: CVE Published:; 2 July 2013

Summary

Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCuh70263, CSCuh70323, and CSCuh26634.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 2, 2013