CVE-2013-1224

high

Cisco

CVSS v3 Base Score

7.8

AV:N/AC:L/Au:N/C:N/I:C/A:N

EPSS Score

0.3%

Exploitation probability in 30 days

Top 46% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

None

Integrity

Availability

None

Published: May 9, 2013 (4753 days ago)

Last Modified: April 29, 2026

Vendor: Cisco

Source: NVD

Description

Directory traversal vulnerability in the Resource Manager in Cisco Unified Customer Voice Portal (CVP) Software before 9.0.1 ES 11 allows remote attackers to overwrite arbitrary files via a crafted (1) HTTP or (2) HTTPS request that triggers incorrect parameter validation, aka Bug ID CSCub38369.

CWE

CWE-22

Affected Products

cisco unified customer voice portal

References

🔗 tools.cisco.com 🔗 tools.cisco.com

CVE-2013-1224

Vulnerability Report

Description

CWE

Affected Products

References