CVE-2013-1177

high Cisco
CVSS v3 Base Score
7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
0.4%
Exploitation probability in 30 days
Top 41% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: April 18, 2013 (4773 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

SQL injection vulnerability in Cisco Network Admission Control (NAC) Manager before 4.8.3.1 and 4.9.x before 4.9.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCub23095.

CWE

CWE-89

Affected Products

cisco network admission control manager and server system software

References

🔗 tools.cisco.com 🔗 tools.cisco.com