cvelistv5 - cve-2013-5487

cve-2013-5487

Vulnerability from cvelistv5

Published

2013-09-23 10:00

Modified

2024-09-16 18:03

Severity ?

Summary

DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.

References

▼	URL	Tags
	ykramarz@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm	Vendor Advisory

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:15:20.299Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20130918 Multiple Vulnerabilities in Cisco Prime Data Center Network Manager",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2013-09-23T10:00:00Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20130918 Multiple Vulnerabilities in Cisco Prime Data Center Network Manager",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2013-5487",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20130918 Multiple Vulnerabilities in Cisco Prime Data Center Network Manager",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2013-5487",
    "datePublished": "2013-09-23T10:00:00Z",
    "dateReserved": "2013-08-22T00:00:00Z",
    "dateUpdated": "2024-09-16T18:03:08.213Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"6.1\\\\(1b\\\\)\", \"matchCriteriaId\": \"FA694779-2C13-4B1E-B072-DD153AA26C5D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2e\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"019F9B97-CE8B-4DE2-BACC-D1A68F4870B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\\\(1a\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"293BB089-B320-49BA-9C25-421D540905DB\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(2\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6F0AE806-1C8D-4F11-A550-FF5754428A32\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(3\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F81232DD-07EE-4D09-B65A-D7634E196511\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(4\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D8AE2E29-39D9-403A-9CAC-BED892F52479\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(5\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA302085-58CB-474D-AAFE-6FD5599541A7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\\\(1\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C9A708D-8CF3-49A4-800C-D31799BCBB0D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\\\(3\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"03143D6F-6C97-4D8C-AD56-D5EB62F931EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\\\(2\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EEDD6E2D-A8A3-4448-908B-3AD7C06A7E45\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\\\(3\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F3C88480-385A-42DB-9D68-6F38AD4D2DB5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\\\(1\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E756CA24-C315-46F0-A94F-6A71C0AF7F53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\\\(2\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"69F43509-E1B7-4245-8D2D-89A9ACD8EEF2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\\\(3u\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DED096A4-0D48-49AB-92D6-0A0608C6AEC8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F5A24647-F23B-4DEF-B63A-940DF910AD4A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2a\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DDFB0875-6956-4AAE-9AB8-5759247C636E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2b\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61BFB7E8-82E4-4374-A7B9-CA10A606D304\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2c\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"265EB77A-11AE-4857-8D3C-B9039059E6FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2e\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"019F9B97-CE8B-4DE2-BACC-D1A68F4870B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\\\(1a\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"293BB089-B320-49BA-9C25-421D540905DB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\\\(1b\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"09B17404-A841-4CDF-B4F7-016FD4AF5507\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.\"}, {\"lang\": \"es\", \"value\": \"DCNM-SAN Server en Cisco Prime Data Center Network Manager (DCNM) anteriores a 6.2(1) permite a atacantes remotos leer ficheros arbitrarios a trav\\u00e9s de vectores no especificados, tambi\\u00e9n conocido como Bug ID CSCue77029.\"}]",
      "id": "CVE-2013-5487",
      "lastModified": "2024-11-21T01:57:34.253",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:N/A:N\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2013-09-23T10:18:59.173",
      "references": "[{\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-200\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2013-5487\",\"sourceIdentifier\":\"ykramarz@cisco.com\",\"published\":\"2013-09-23T10:18:59.173\",\"lastModified\":\"2024-11-21T01:57:34.253\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.\"},{\"lang\":\"es\",\"value\":\"DCNM-SAN Server en Cisco Prime Data Center Network Manager (DCNM) anteriores a 6.2(1) permite a atacantes remotos leer ficheros arbitrarios a trav\u00e9s de vectores no especificados, tambi\u00e9n conocido como Bug ID CSCue77029.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:N/A:N\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"6.1\\\\(1b\\\\)\",\"matchCriteriaId\":\"FA694779-2C13-4B1E-B072-DD153AA26C5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"019F9B97-CE8B-4DE2-BACC-D1A68F4870B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\\\(1a\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"293BB089-B320-49BA-9C25-421D540905DB\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(2\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F0AE806-1C8D-4F11-A550-FF5754428A32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(3\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F81232DD-07EE-4D09-B65A-D7634E196511\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(4\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8AE2E29-39D9-403A-9CAC-BED892F52479\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\\\(5\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA302085-58CB-474D-AAFE-6FD5599541A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\\\(1\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C9A708D-8CF3-49A4-800C-D31799BCBB0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\\\(3\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03143D6F-6C97-4D8C-AD56-D5EB62F931EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\\\(2\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEDD6E2D-A8A3-4448-908B-3AD7C06A7E45\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\\\(3\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3C88480-385A-42DB-9D68-6F38AD4D2DB5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\\\(1\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E756CA24-C315-46F0-A94F-6A71C0AF7F53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\\\(2\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69F43509-E1B7-4245-8D2D-89A9ACD8EEF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\\\(3u\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DED096A4-0D48-49AB-92D6-0A0608C6AEC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5A24647-F23B-4DEF-B63A-940DF910AD4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2a\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDFB0875-6956-4AAE-9AB8-5759247C636E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2b\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61BFB7E8-82E4-4374-A7B9-CA10A606D304\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2c\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"265EB77A-11AE-4857-8D3C-B9039059E6FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\\\(2e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"019F9B97-CE8B-4DE2-BACC-D1A68F4870B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\\\(1a\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"293BB089-B320-49BA-9C25-421D540905DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\\\(1b\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09B17404-A841-4CDF-B4F7-016FD4AF5507\"}]}]}],\"references\":[{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm\",\"source\":\"ykramarz@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

fkie_cve-2013-5487

Vulnerability from fkie_nvd

Published

2013-09-23 10:18

Modified

2024-11-21 01:57

Severity ?

Summary

DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.

References

▼	URL	Tags
	psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	prime_data_center_network_manager	*
cisco	prime_data_center_network_manager	5.2\(2e\)
cisco	prime_data_center_network_manager	6.1\(1a\)
cisco	prime_data_center_network_manager	4.1\(2\)
cisco	prime_data_center_network_manager	4.1\(3\)
cisco	prime_data_center_network_manager	4.1\(4\)
cisco	prime_data_center_network_manager	4.1\(5\)
cisco	prime_data_center_network_manager	4.2\(1\)
cisco	prime_data_center_network_manager	4.2\(3\)
cisco	prime_data_center_network_manager	5.0\(2\)
cisco	prime_data_center_network_manager	5.0\(3\)
cisco	prime_data_center_network_manager	5.1\(1\)
cisco	prime_data_center_network_manager	5.1\(2\)
cisco	prime_data_center_network_manager	5.1\(3u\)
cisco	prime_data_center_network_manager	5.2\(2\)
cisco	prime_data_center_network_manager	5.2\(2a\)
cisco	prime_data_center_network_manager	5.2\(2b\)
cisco	prime_data_center_network_manager	5.2\(2c\)
cisco	prime_data_center_network_manager	5.2\(2e\)
cisco	prime_data_center_network_manager	6.1\(1a\)
cisco	prime_data_center_network_manager	6.1\(1b\)

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FA694779-2C13-4B1E-B072-DD153AA26C5D",
              "versionEndIncluding": "6.1\\(1b\\)",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2e\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "019F9B97-CE8B-4DE2-BACC-D1A68F4870B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1a\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "293BB089-B320-49BA-9C25-421D540905DB",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "6F0AE806-1C8D-4F11-A550-FF5754428A32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(3\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "F81232DD-07EE-4D09-B65A-D7634E196511",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(4\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "D8AE2E29-39D9-403A-9CAC-BED892F52479",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(5\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "BA302085-58CB-474D-AAFE-6FD5599541A7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "4C9A708D-8CF3-49A4-800C-D31799BCBB0D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\(3\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "03143D6F-6C97-4D8C-AD56-D5EB62F931EF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "EEDD6E2D-A8A3-4448-908B-3AD7C06A7E45",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\(3\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "F3C88480-385A-42DB-9D68-6F38AD4D2DB5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "E756CA24-C315-46F0-A94F-6A71C0AF7F53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "69F43509-E1B7-4245-8D2D-89A9ACD8EEF2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(3u\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "DED096A4-0D48-49AB-92D6-0A0608C6AEC8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "F5A24647-F23B-4DEF-B63A-940DF910AD4A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2a\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "DDFB0875-6956-4AAE-9AB8-5759247C636E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2b\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "61BFB7E8-82E4-4374-A7B9-CA10A606D304",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2c\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "265EB77A-11AE-4857-8D3C-B9039059E6FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2e\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "019F9B97-CE8B-4DE2-BACC-D1A68F4870B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1a\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "293BB089-B320-49BA-9C25-421D540905DB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1b\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "09B17404-A841-4CDF-B4F7-016FD4AF5507",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029."
    },
    {
      "lang": "es",
      "value": "DCNM-SAN Server en Cisco Prime Data Center Network Manager (DCNM) anteriores a 6.2(1) permite a atacantes remotos leer ficheros arbitrarios a trav\u00e9s de vectores no especificados, tambi\u00e9n conocido como Bug ID CSCue77029."
    }
  ],
  "id": "CVE-2013-5487",
  "lastModified": "2024-11-21T01:57:34.253",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 7.8,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2013-09-23T10:18:59.173",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2013-5487

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.

Aliases

CVE-2013-5487

Aliases

CVE-2013-5487

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2013-5487",
    "description": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.",
    "id": "GSD-2013-5487"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2013-5487"
      ],
      "details": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.",
      "id": "GSD-2013-5487",
      "modified": "2023-12-13T01:22:21.264279Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2013-5487",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20130918 Multiple Vulnerabilities in Cisco Prime Data Center Network Manager",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "6.1\\(1b\\)",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1a\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2e\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2c\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2b\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2a\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(5\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(4\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1b\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2e\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(3u\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1a\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2013-5487"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-200"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20130918 Multiple Vulnerabilities in Cisco Prime Data Center Network Manager",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 7.8,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2013-09-23T23:15Z",
      "publishedDate": "2013-09-23T10:18Z"
    }
  }
}

ghsa-6j46-84j7-hf9v

Vulnerability from github

Published

2022-05-17 05:04

Modified

2022-05-17 05:04

Details

DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2013-5487"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2013-09-23T10:18:00Z",
    "severity": "HIGH"
  },
  "details": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.",
  "id": "GHSA-6j46-84j7-hf9v",
  "modified": "2022-05-17T05:04:21Z",
  "published": "2022-05-17T05:04:21Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5487"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130918-dcnm"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029. Vendors have confirmed this vulnerability Bug ID CSCue77029 It is released as.A third party may be able to read arbitrary files. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DownloadServlet. Without prior authentication, an attacker could invoke the DownloadServlet to disclose an arbitrary file from the file system. With this information, a remote attacker could abuse this to execute arbitrary code against the target server. Successfully exploiting this issue may allow an attacker to gain access to certain arbitrary files. Information obtained may aid in further attacks. This issue is being tracked by Cisco Bug ID CSCue77029. The manager provides multi-protocol management of the network and provides troubleshooting capabilities for switch health and performance

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201309-0453",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "4.1\\(3\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "6.1\\(1b\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "4.1\\(4\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.2\\(2e\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "4.1\\(2\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "6.1\\(1a\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.2\\(2c\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.2\\(2b\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.2\\(2\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.1\\(3u\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.2\\(2a\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.0\\(2\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.1\\(1\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.1\\(2\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.2\\(3\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.0\\(3\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "6.1\\(1b\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.2\\(1\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.1\\(5\\)"
      },
      {
        "model": "prime data center network manager",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "6.2(1)"
      },
      {
        "model": "data center network manager",
        "scope": null,
        "trust": 0.7,
        "vendor": "cisco",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "6.1\\(1b\\)",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1a\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2e\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2c\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2b\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2a\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.2\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(5\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(4\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1b\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.2\\(2e\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(3u\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:6.1\\(1a\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.1\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:5.0\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:prime_data_center_network_manager:4.1\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Andrea Micalizzi aka rgod",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2013-5487",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 7.8,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "None",
            "baseScore": 7.8,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2013-5487",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "ZDI",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "CVE-2013-5487",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "MEDIUM",
            "trust": 0.7,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 7.8,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "VHN-65489",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:C/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2013-5487",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "ZDI",
            "id": "CVE-2013-5487",
            "trust": 0.7,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201309-370",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-65489",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "db": "VULHUB",
        "id": "VHN-65489"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029. Vendors have confirmed this vulnerability Bug ID CSCue77029 It is released as.A third party may be able to read arbitrary files. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DownloadServlet.  Without prior authentication, an attacker could invoke the DownloadServlet to disclose an arbitrary file from the file system.  With this information, a remote attacker could abuse this to execute arbitrary code against the target server. \nSuccessfully exploiting this issue may allow an attacker to gain access to  certain arbitrary files. Information obtained may aid in further attacks. \nThis issue is being tracked by Cisco Bug ID CSCue77029. The manager provides multi-protocol management of the network and provides troubleshooting capabilities for switch health and performance",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "db": "BID",
        "id": "62483"
      },
      {
        "db": "VULHUB",
        "id": "VHN-65489"
      }
    ],
    "trust": 2.61
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2013-5487",
        "trust": 3.5
      },
      {
        "db": "BID",
        "id": "62483",
        "trust": 1.0
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278",
        "trust": 0.8
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-1768",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-13-256",
        "trust": 0.7
      },
      {
        "db": "CISCO",
        "id": "20130918 MULTIPLE VULNERABILITIES IN CISCO PRIME DATA CENTER NETWORK MANAGER",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-65489",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "db": "VULHUB",
        "id": "VHN-65489"
      },
      {
        "db": "BID",
        "id": "62483"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ]
  },
  "id": "VAR-201309-0453",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-65489"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T12:58:06.211000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20130918-dcnm",
        "trust": 1.5,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20130918-dcnm"
      },
      {
        "title": "30682",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/viewambalert.x?alertid=30682"
      },
      {
        "title": "30756",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=30756"
      },
      {
        "title": "cisco-sa-20130918-dcnm",
        "trust": 0.8,
        "url": "http://www.cisco.com/cisco/web/support/jp/111/1119/1119892_cisco-sa-20130918-dcnm-j.html"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-200",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-65489"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.4,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20130918-dcnm"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-5487"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-5487"
      },
      {
        "trust": 0.6,
        "url": "http://www.securityfocus.com/bid/62483"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "db": "VULHUB",
        "id": "VHN-65489"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "db": "VULHUB",
        "id": "VHN-65489"
      },
      {
        "db": "BID",
        "id": "62483"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2013-11-24T00:00:00",
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "date": "2013-09-23T00:00:00",
        "db": "VULHUB",
        "id": "VHN-65489"
      },
      {
        "date": "2013-09-18T00:00:00",
        "db": "BID",
        "id": "62483"
      },
      {
        "date": "2013-09-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "date": "2013-09-23T10:18:59.173000",
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "date": "2013-09-24T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2013-11-24T00:00:00",
        "db": "ZDI",
        "id": "ZDI-13-256"
      },
      {
        "date": "2013-09-23T00:00:00",
        "db": "VULHUB",
        "id": "VHN-65489"
      },
      {
        "date": "2013-11-27T00:24:00",
        "db": "BID",
        "id": "62483"
      },
      {
        "date": "2013-09-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      },
      {
        "date": "2013-09-23T23:15:46.547000",
        "db": "NVD",
        "id": "CVE-2013-5487"
      },
      {
        "date": "2013-09-24T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Prime Data Center Network Manager of  DCNM-SAN Vulnerability to read arbitrary files on server",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-004278"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "information disclosure",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201309-370"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2013-5487

Vulnerability from cvelistv5

fkie_cve-2013-5487

Vulnerability from fkie_nvd

gsd-2013-5487

Vulnerability from gsd

ghsa-6j46-84j7-hf9v

Vulnerability from github

var-201309-0453

Vulnerability from variot

Tags

Sightings

Nomenclature