CVE-2013-5487 — Sensitive Information Exposure in Cisco Prime Data Center Network Manager

CWE-200 — Sensitive Information Exposure CWE-78 — OS Command Injection4 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.4%

top 40.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Prime Data Center Network Manager

Timeline

PublishedSep 23

Latest updateMay 17

Description

DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.

CVSS vector

AV:N/AC:L/C:C/I:N/A:NExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/prime_data_center_network_manager6.1\(1b\)+18

🔴Vulnerability Details

GHSA

GHSA-6j46-84j7-hf9v: DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6↗2022-05-17

▶

CVEList

CVE-2013-5487: DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6↗2013-09-23

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco Prime Data Center Network Manager↗2013-09-18

▶