Remote Data Exposure in Cisco MediaSense Web Interface
CVE-2013-5502

Currently unrated

Key Information:

Vendor: Cisco
Status: Mediasense
Vendor: CVE Published:; 23 September 2013

Summary

The web interface in Cisco MediaSense fails to adequately secure the client-server communication channel. This deficiency may allow remote attackers to gain unauthorized access to sensitive information contained within query strings or cookies, potentially compromising user data through various unspecified vectors.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

http://osvdb.org/97532

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Sep 23, 2013
Vulnerability Reserved
Aug 22, 2013