Cross-Site Request Forgery Vulnerability in Cisco Security Appliances
CVE-2013-3395

Currently unrated

Key Information:

Vendor: Cisco
Status: Content Security Management Appliance; Web Security Appliance; Email Security Appliance Firmware
Vendor: CVE Published:; 2 July 2013

Summary

The CSRF vulnerability in Cisco's web framework for its security appliances exposes users to the risk of unauthorized access. Through this vulnerability, an attacker can exploit the authentication session of any logged-in user, potentially leading to unauthorized actions within the affected devices. This security flaw affects multiple Cisco products, including the Web Security Appliance, Email Security Appliance, and Content Security Management Appliance, impacting user data and security integrity.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 2, 2013