CVE-2013-3437

medium Cisco
CVSS v3 Base Score
6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P
EPSS Score
0.6%
Exploitation probability in 30 days
Top 32% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: July 23, 2013 (4678 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

SQL injection vulnerability in the management application in Cisco Unified Operations Manager allows remote authenticated users to execute arbitrary SQL commands via an entry field, aka Bug ID CSCud80179.

CWE

CWE-89

Affected Products

cisco unified operations manager

References

🔗 osvdb.org 🔗 tools.cisco.com 🔗 tools.cisco.com 🔗 osvdb.org 🔗 tools.cisco.com