CVE-2013-3431

Published: Jul 25, 2013Modified: Apr 29, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv40169.

Affected (21)

Products: Cisco: Video Surveillance Manager

Cisco

1 product

Video Surveillance Manager

Configuration A

21 vulnerable

Vulnerable Software	Affected Versions
Cisco Video Surveillance Manager	Up to 6.3.3
Cisco Video Surveillance Manager	Version 1.1.0
Cisco Video Surveillance Manager	Version 1.2.1
Cisco Video Surveillance Manager	Version 2.0.0
Cisco Video Surveillance Manager	Version 2.1.2
Cisco Video Surveillance Manager	Version 2.1.3
Cisco Video Surveillance Manager	Version 2.1.4
Cisco Video Surveillance Manager	Version 2.1.6
Cisco Video Surveillance Manager	Version 2.1.7
Cisco Video Surveillance Manager	Version 2.1
Cisco Video Surveillance Manager	Version 2.3.0
Cisco Video Surveillance Manager	Version 2.3.1
Cisco Video Surveillance Manager	Version 4.0.1
Cisco Video Surveillance Manager	Version 4.2.0
Cisco Video Surveillance Manager	Version 4.2.1
Cisco Video Surveillance Manager	Version 6.3.1
Cisco Video Surveillance Manager	Version 6.3.2
Cisco Video Surveillance Manager	Version 6.3.2 mr1
Cisco Video Surveillance Manager	Version 6.3.2 mr2
Cisco Video Surveillance Manager	Version 6.3.2 mr3
Cisco Video Surveillance Manager	Version 6.3