CVE-2013-1245

medium

Cisco

CVSS v3 Base Score

4.0

AV:N/AC:L/Au:S/C:N/I:P/A:N

EPSS Score

0.2%

Exploitation probability in 30 days

Top 60% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

None

Integrity

Availability

None

Published: May 16, 2013 (4746 days ago)

Last Modified: April 29, 2026

Vendor: Cisco

Source: NVD

Description

The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows remote authenticated users to bypass intended access restrictions via crafted requests, aka Bug ID CSCue67190.

CWE

CWE-20

Affected Products

cisco webex social

References

🔗 tools.cisco.com 🔗 tools.cisco.com

CVE-2013-1245

Vulnerability Report

Description

CWE

Affected Products

References