CVE-2013-1120

medium Cisco
CVSS v3 Base Score
6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS Score
0.6%
Exploitation probability in 30 days
Top 31% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
P
Integrity
P
Availability
P
Published: February 6, 2013 (4844 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

Multiple cross-site request forgery (CSRF) vulnerabilities on the Cisco Unity Express with software before 8.0 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCue35910.

CWE

CWE-352

Affected Products

cisco unity express softwarecisco unity express

References

🔗 tools.cisco.com 🔗 tools.cisco.com