Authentication Bypass in Cisco Video Surveillance Manager
CVE-2013-3431

Currently unrated

Key Information:

Vendor: Cisco
Status: Video Surveillance Manager
Vendor: CVE Published:; 25 July 2013

Summary

The vulnerability in Cisco Video Surveillance Manager (VSM) prior to version 7.0.0 allows unauthorized users to access monitoring pages without any authentication. This security flaw enables remote attackers to exploit the system, potentially gaining access to sensitive configuration files, logs, and archived data. The issue is particularly related to the Broadware sample code package, raising concerns about the integrity and confidentiality of the video surveillance system.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/85945

vdb-entryx_refsource_XF

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/61431

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jul 25, 2013
Vulnerability Reserved
May 6, 2013