CVE-2013-1170

Published: Apr 11, 2013Modified: Apr 29, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The Cisco Prime Network Control System (NCS) appliance with software before 1.1.1.24 has a default password for the database user account, which makes it easier for remote attackers to change the configuration or cause a denial of service (service disruption) via unspecified vectors, aka Bug ID CSCtz30468.

Affected (2)

Products: Cisco: Prime Network Control System Software, Prime Network Control System

2 products

Prime Network Control System Software

Prime Network Control System

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Cisco Prime Network Control System Software	Version 1.1
Cisco Prime Network Control System	All versions

Related CWEs

References (2)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-ncs

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-ncs

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.